Get the HP-UX admins to install ssh!, it'll take a total of 15 minutes
out of their lives, provide crytpographically authenticated, compressee,
and non-sniffable connections, and best of all, you won't have to edit
any of your scripts.
Alternatively, set up a tcp proxy on the NAT box.
"Kraszewski, Marcin" wrote:
>
> > -----Original Message-----
> > From: Alan Mead [mailto:[EMAIL PROTECTED]]
> > Sent: Wednesday, 07 June, 2000 19:39
> > To: Kraszewski, Marcin
> > Subject: Re: ipchains MASQ and rlogind
> >
> >
> > FWIW, telnet or, better, ssh work through IP Masq just fine.
>
> I realise that, but, unfortunately, I have no control over the target
> (HP-UX) servers - they don't have ssh installed - and our developers are
> used to using eXceed xterm over rlogin (their scripts are set up that way),
> so if there is a way to force rlogin connections to use a specific range of
> source ports on the NAT, I would like to implement it. If not, they will
> have to edit their scripts, but they are not going to like it (we have over
> 60 UNIX servers).
>
> Marcin
>
> > -Alan
> >
> > ----- Original Message -----
> > From: Kraszewski, Marcin <[EMAIL PROTECTED]>
> > To: <[EMAIL PROTECTED]>
> > Sent: Wednesday, June 07, 2000 10:53 AM
> > Subject: ipchains MASQ and rlogind
> >
> >
> > > I have a problem with getting rlogin connection from my
> > private network
> > > through a Linux NAT (MASQ) gateway. rlogind expects the
> > connection to come
> > > from a port in the range 512 through 1023, if it isn't, the
> > connection is
> > > aborted, but my NAT gateway assigns ports (in the trace I
> > did) from the
> > > range over 60,000. Is there any way to force connections to
> > port 513 to be
> > > from the privileged range (512-1023)? TIA.
> >
>
> --
> To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
> as the Subject.
--
-------------------------------------
Sam Bayne - System Administrator
North Seattle Community College
[EMAIL PROTECTED] (206)527-3762
=====================================
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
