On Friday 18 August 2006 19:17, Andreas Herrmann wrote:
> A friend told me that ISA server is able to this and it actually works.
> I also cannot believe this because the FQDN isn't send with the SSH
> request. Maybe it is done indirectly ny tunneling SSH in HTML if this is
> possible.
If you are
Andreas Herrmann wrote:
> But this setup is possible because Microsoft ISA Server exactly does
> this job!
As others told you this is not possible in a general way. I'd be *very*
interested if ISA Server can do this independent from the protocol used.
Mind sending a few tcpdump traces of imap/pop/
Just to offer a possible workaround for SSH:
If establishing a _direct_ SSH connection isn't required, you could also
create a very unprivileged user on the gateway machine and SSH from
there to your actual destination.
Christian
begin:vcard
fn:Christian Spoo
n:Spoo;Christian
adr;quoted-printab
Andreas Herrmann wrote:
> mRyOuNg schrieb:
>> Microsoft ISA Server is a Firewall/Proxy/Reverse-Proxy ...
>>
>> So in your case, I suppose it does a reverse proxy job (not a tunneling,
>> just working as a web client for internal network).
>>
>> I already replaced several ISA server with GNU/Linux s
A friend told me that ISA server is able to this and it actually works.
I also cannot believe this because the FQDN isn't send with the SSH
request. Maybe it is done indirectly ny tunneling SSH in HTML if this is
possible.
Yes, with different ports it can by easily solved by NAT.
I think ther
Andreas Herrmann wrote:
mRyOuNg schrieb:
Andreas Herrmann wrote:
Hi there,
I want to setup a gateway / firewall solution with Gentoo. The network
has following structure:
Several host (host[1,...,x].domain.net) are defined within the DNS and
all of them have the same A-Record with the IP 1.2.
Is ISA server doing this for SSH,Mail ...? SSH in particular would be
extremely difficult unless you nat a different port for each host. The only
reason you are able to do this is that http passes the hostname with the
request to the webserver and the proxy can determine how to handle it.
Sean
O
mRyOuNg schrieb:
Andreas Herrmann wrote:
Hi there,
I want to setup a gateway / firewall solution with Gentoo. The network
has following structure:
Several host (host[1,...,x].domain.net) are defined within the DNS and
all of them have the same A-Record with the IP 1.2.3.4
The gateway is listen
We don't have enough public IP's but we want to have several real
servers for different customers (SSH, Mail, etc.) in the private subnet.
I also plan to switch from Microsoft ISA Server to an
Open-Source-Solution with Linux. The solution can be simply done for
webservers, but we need a soluti
Andreas Herrmann wrote:
> Hi there,
>
> I want to setup a gateway / firewall solution with Gentoo. The network
> has following structure:
>
> Several host (host[1,...,x].domain.net) are defined within the DNS and
> all of them have the same A-Record with the IP 1.2.3.4
> The gateway is listening on
On Friday 18 August 2006 17:09, Andreas Herrmann wrote:
> Do you have any hints for me?
As you mention Microsoft ISA server, I'm guessing your doing HTTP.
If you are, you want a reverse proxy.
I use pound, it's perfect for my needs.
--
Mike Williams
--
gentoo-server@gentoo.org mailing list
Hi there,
I want to setup a gateway / firewall solution with Gentoo. The network
has following structure:
Several host (host[1,...,x].domain.net) are defined within the DNS and
all of them have the same A-Record with the IP 1.2.3.4
The gateway is listening on its external network interface wi
12 matches
Mail list logo
