[ale] pcAnywhere through an ipchains firewall

Jeremy T. Bouse undrgrid at toons.UnderGrid.net
Wed Aug 9 22:13:14 EDT 2000 

Gary,
	This almost sounds like you actually have two obsticales to overcome,
the first being the fact it'll be behind a firewall and the second being
the fact there will be masqurading being done for the Private IPs to Public
IPs... In this situation gettin around the first would be relatively simple
as you could monitor a PcAnywhere connection and see what ports it requires
and then ensure they're open enuf for those that need to get in...
	I see the second item to be a lil bit more of a hurdle... It's been
awhile since I've used PcAnywhere so I may not be up to date with it's 
feature set but it seems more like you'll need some kind of VPN client
to let them through the network firewall first and then get PcAnywhere to
connect to the server via it's private IP through the VPN tunnel... I'm
aware of several possibilities that could handle this if you would be 
interrest'd in them... I've work'd with all of the products personally so
I know they could handle the VPN issue and then PcAnywhere really doesn't
become a problem... Some of them are hardware solutions and others are
purely software...

	Respectfully,
	Jeremy T. Bouse
	President/CEO
	UnderGrid Network Services, LLC

Gary S. Mackay was said to been seen saying:
> Sorry for so many questions lately. Has anyone had any success routing
> pcAnywhere through an ipchains firewall? I have a good size university that
> didn't know that all of the machines on one of their departments are wide open
> to the world. They want a firewall soon BUT, they say, four of their employees
> come in through the internet via pcAnywhere and connect to their workstations.
> A whole bunch of IP's will be free'd up when the internal addressing gets
> changed to the 192.168 group, so, I envision assigning several of the IP's to
> the linux box and using ipmasqadm (I guess?) forward traffic to each users
> machine. I've tried it with one of my closer clients but can't seem to get it
> to work. Are there any docs that explain this?
> 

-- 
,-----------------------------------------------------------------------------,
| Jeremy T. Bouse  -  UnderGrid Network Services, LLC  -   www.UnderGrid.net  |
|       All messages from this address should be atleast PGP/GPG signed       |
|        Public PGP/GPG fingerprint and location in headers of message        |
|     If received unsigned (without requesting as such) DO NOT trust it!      |
| undrgrid at UnderGrid.net  -  NIC Whois: JB5713  -  Jeremy.Bouse at UnderGrid.net |
`-----------------------------------------------------------------------------'

 PGP signature

More information about the Ale mailing list