If you are going to use OpenBSD + ipfilter (+ ipnat) then there is
nothing special
to do. Just setup ssh on hosts in DMZ like you setup ssh on hosts in
local lan.
So (unfortunately) there is no best way.
horio shoichi
Drew Smith wrote:
>
> Hey, folks,
>
> Quick one - what's the best way to get from our internal network into
> our DMZ with SSH? I'm currently using (actually, currently about to
> replace) fwtk with telnet-gw as the telnet proxy, but if I wish to use
> plug-gw as the ssh proxy, it seems I'll need to setup a seperate port on
> the firewall for each system in the DMZ... just need to be able to ssh
> directly through.
>
> What's the best way to go about this? New firewall is being built,
> OpenBSD 2.7 w/ipf, same question applies...
>
> Cheers,
> - Drew.
>
> --
> Drew Smith, UNIX Network Administrator
> Pacific Corporate Trust Company, Vancouver
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
- SSH question... Drew Smith
- How do I do a reverse Invoke horio shoichi
- How do I do a reverse Invoke Sumeet Vij
- RE: SSH question... Ben Nagy
