Hi Erwann,
On Thu, Jan 03, 2002 at 10:37:14PM +0100, Erwann SIMON wrote:
> Hi,
>
> Wich soltion do U use to have a secure remote connection to your VM from a
> TN3270 emulator for MS Windows and/or Linux ?
>
Here at Red Hat, there is one trick we use, which allows for the use of
use of secure (SSL) 3270 from a Linux machine, using the standard x3270 or
c3270 programs. x3270 is the graphical, X-Windows based TN3270 emulator
included with Red Hat Linux and other Linux distributions. Without using
the SSL tunneling method described here, x3270 does not support secure
connections.
Assuming you have:
- the xinetd RPM already installed (the multi-purpose Internet services
daemon)
- the stunnel RPM already installed
you can try the following steps (these being for a Red Hat Linux 7.1 / 7.2
system):
1. Add the following line to the /etc/services file as root:
3270s-tunnel 23/tcp
2. Add the file /etc/xinetd.d/3270s-tunnel as root, with the contents:
# default: off
# description: Tunnel 3270 via SSL to remote end
service 3270s-tunnel
{
disable = no
socket_type = stream
wait = no
user = nobody
server = /usr/sbin/stunnel
server_args =-c -r <remote IP address>:23
}
^^^ specify remote IP address in <remote IP address> above
3. Do a "service xinetd start" or "service xinetd restart" to start or
restart the xinetd service. (Use "chkconfig --list" to see the various
system and xinetd-based services, including the "3270s-tunnel" service)
4. Connect with x3270 to "localhost" or "127.0.0.1" - data will be
forwarded to the IP address specified above, using SSL.
Notes:
------
- You may want to use the "chkconfig --list" command to check whether any
other network services e.g. telnet or ftp will be activated inadvertently
through starting the multi-purpose xinetd service - check under "xinetd
based services"
- x3270 does not appear to allow specification of a port number other than
23, hence the service we create above listens on port 23 (see line we add
to /etc/services). This means that you would not be able to provide the
telnet service (via xinetd) on the machine you are running xinetd on.
- If the x3270-text RPM is installed (in Red Hat Linux), you may also use
the text-based c3270 program. (Just as for x3270, it also does not allow
ports other than 23 to be specified.)
Erwann, I hope this helps and provides you with one way to connect via
Linux. :-)
Regards,
DS..
/* David Sainty, Open Source Technology Researcher, Red Hat, Inc. */
/* [EMAIL PROTECTED] http://www.redhat.com/ Facta Non Verba. */
/* Registered Linux User #23207 - http://counter.li.org */
