[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Server configuration through firewall

To: ircd-users@xxxxxxx
Subject: Server configuration through firewall
From: srosa@xxxxxxxxxxx (Stephane Rosa)
Date: Tue, 21 Dec 1999 15:01:19 +0100 (CET)
Delivered-to: ircd-users-out@irc.org
Delivered-to: ircd-users@irc.org

Hi ircd gurus,

I would like to configure two servers so they can
link through a firewall. I don't have lots of
information about this firewall, except that :

- It *seems* to do outbound IP masquerading
- port 5089/tcp is open inbound/outbound
- I know inbound/outbound interfaces IP adresses

The setup is as follows :

===================
touched.csd.sgi.com     IRCd server
192.48.193.38
===================
        |
        |
===================
169.238.216.142         SGI Intranet
firewall           ------------------------
198.149.40.9            Internet
===================
        |
        |
===================
198.182.210.55          IRCd server
sgi-sock.sterling.sykes.com
===================

The first thing I tried was :

on touched.csd:
c:198.182.210.55:test:sgi-sock.sterling.sykes.com:5089:50
N:198.182.210.55:f5Nq.jisybYQ.:sgi-sock.sterling.sykes.com::50

on sgi-sock:
c:192.48.193.38:test:touched.csd.sgi.com:5089:50
N:192.48.193.38:f5Nq.jisybYQ.:touched.csd.sgi.com::50

it didn't work (No C/N line found)

Now I found out that :

- the firewall masquerade its ip packets as being 198.149.40.9. 
- sgi-sock cannot resolve 192.48.193.38 to touched.csd.sgi.com 
- touched.csd CAN resolve 198.182.210.55 to sgi-sock.sterling.sykes.com

Could someone help me on the config lines ? I think of
trying something like this :

on touched.csd:
c:198.182.210.55:test:sgi-sock.sterling.sykes.com:5089:50
N:198.182.210.55:f5Nq.jisybYQ.:sgi-sock.sterling.sykes.com::50

on sgi-sock:
# no autoconnect, let touched initiate the connection
# because of the firewall "established 5089" clause.
c:198.149.40.9:test:touched.csd.sgi.com::50
N:198.149.40.9:f5Nq.jisybYQ.:touched.csd.sgi.com::50

Would this work ? Sorry if it seems silly, I had no
problem connecting intranet servers together, but this
firewall gives me headache.

Thanks for any hints
Stephane













--
SILICON GRAPHICS                 EUROPEAN MANUFACTURING CENTER
##############################################################
Stephane Rosa                     Tel :     +41 (0)32 843-3638
Business Analyst                  Fax :     +41 (0)32 843-3909
APS/FP  Project                   GSM :     +41 (0)79 448-5335
--------------------------------------------------------------
ircnoc.neu.sgi.com  SGI Intranet  IRC :   EuroOper on #irchelp
irc.stealth.net     Euro-IRCNet   IRC :   Clipper on #radionet

<<  End forwarded message


--
SILICON GRAPHICS                 EUROPEAN MANUFACTURING CENTER
##############################################################
Stephane Rosa                     Tel :     +41 (0)32 843-3638
Business Analyst                  Fax :     +41 (0)32 843-3909
APS/FP  Project                   GSM :     +41 (0)79 448-5335
--------------------------------------------------------------
ircnoc.neu.sgi.com  SGI Intranet  IRC :   EuroOper on #irchelp
irc.stealth.net     Euro-IRCNet   IRC :   Clipper on #radionet

Prev by Date: Re: Single server
Next by Date: Re: Best New Trade Show Display By Opera Portables, Inc.
Previous by thread: Re: Best New Trade Show Display By Opera Portables, Inc.
Next by thread: user.patch
Index(es):
- Date
- Thread