Re: [suse-security] Emulate real ip's to access intranet hosts from outside

To: "Debian User" <debian-user@lists.debian.org>, debian-security@lists.debian.org, suse-linux-e@suse.com, suse-security@suse.com, "Ramon Acedo" <ramon.acedo@upcnet.es>
Subject: Re: [suse-security] Emulate real ip's to access intranet hosts from outside
From: Michael Appeldorn <appeldorn@codixx.de>
Date: Mon, 11 Feb 2002 08:41:58 +0100
Message-id: <[🔎] CMLE0ZXMH6563HF6ZNLLF2WHFZYYVYT.3c6775c6@pc_100_32>
Reply-to: Appeldorn@Codixx.De
In-reply-to: <[🔎] NGBBKNACILFLLEOEECBGAEJNCAAA.ramon.acedo@upcnet.es>

>I'd like to access to the hosts of my intranet with private ip's from the
>outside.
>I have the following net:

One or few weeks ago the same questions was up and the list
concluded the discussion with the result, that this best way seems to
be to ssh-portforwarding - that means, you'll use putty or such a tool
to connect yourself to your firebox and the ssh-parameters will
make the sshd forward all your paket with the private ip of your firebox.

And the best ist - all is encrypted. IMPORTANT - there are some exploits
for known vulnerabilities of older ssh-version - use the actual and ensure
to force sshd to use protocol 2 (/etc/.ssh/sshd_config). And check your 
iptables-filter for allowed incoming/outgoing ssh-paket (port22/tcp)

Just see the achieves of this list and watch 4 the VNC discussion a few
weeks ago to learn more.

Your Michael

Reply to:

References:
- Emulate real ip's to access intranet hosts from outside
  - From: "Ramon Acedo" <ramon.acedo@upcnet.es>

Prev by Date: Re: Emulate real ip's to access intranet hosts from outside
Next by Date: Reiserfs
Previous by thread: Re: Emulate real ip's to access intranet hosts from outside
Next by thread: Re: Emulate real ip's to access intranet hosts from outside
Index(es):
- Date
- Thread