We have a tape machine on our secure network and it makes sense to reach out to the non-secure DMZ and yank back backups through the firewall. That way the connection is established from the inside out. I would like to use an encrypted client/server such as SCP or SSH to do so. Does anyone have any idea how to do this? I guess I could use SSH and begin the tar process. Then I guess I could scp to the external server and get a tarball. I would prefer not to have to tar the external file up on the remote computer so that I don't have to worry about overflowing the filesystem there. I would prefer to have the external computer tar the file over the network (back through the secure VPN that was established outward) onto the tape machine to avoid this problem. One approach I thought of was network mounting the tape machine as a logical drive for the external server, but NFS is a whole additional security headache. Is there some way others are using to establish a secure VPN out to a DMZ server and then snake the data back through that encrypted tunnel back to a backup device? I'm sure others have had this problem in the past. Any references to previous threads would also be appreciated. Thanks in advance, Pat Stingley - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]