It sounds like you want to manage a server with a dynamic ip? I manage several servers, some of which have dynamic ips. To solve the problems associated with a dynamic ips, I wrote a small script that does this:
Once an hour, the remote (dynamic ip) server goes to a secret URL on my main server and "checks in". If the ip has changed since the last time it "Checked in", it e-mails me with the new IP# so I can make the proper DNS changes. I can go to a password protected page where all my servers are tracked and instantly know the last time any of my remote servers checked in and their current IP address. This not only helps me manage the dynamic IP problem but it alerts me when any of the servers overdue in checking in and may have gone down. The script is kind of proprietary but should be able to work for your situation with a little modification. Contact me off list if this is something you may be interested in. Paul Alger [EMAIL PROTECTED] -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of David Martin - Ivy League Software Sent: Thursday, March 18, 2004 5:31 AM To: sambar List Member Subject: [sambar] IP Restrictions Up until I started using my off-site server my Sambar server was on my local net ... so I could use 10.0.0.* as an IP restriction but now with it half way across the country ... and my ISP has many different subnets ... without being able to use a FQDN the remote access features are useless to me ... unless I am missing something else. I use Dynamic DNS to point a FQDN to my DSLs current IP ... so if you go to office.mydomain.com it will go to my offices Dynamic DSL IP but if you go to www.mydomain.com it goes to the dedicated server. David Martin Ivy League Software :: -----Original Message----- :: From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf :: Of Danny Mallory :: Sent: Thursday, March 18, 2004 12:20 AM :: To: sambar List Member :: Subject: [sambar] IP Restrictions :: :: :: What you are asking for is really not possible unless you are :: talking about performing a reverse DNS verification to compare :: the PTR record of the connecting IP address, Since this is still :: based on the IP address it would be a waist of time trying to do :: it with a dynamic addresses.. Any other solution is basically :: you trusting the client connecting to provide the FQDN within :: the specifications of http1.1(like vhost works) and anyone can :: spoof this.. (hosts file on clients computer) :: :: Unless I am missing something else, I don't think there is any :: room for FQDN when it comes to security and especially who I :: going to let get to admin. :: :: Danny :: :: On 17/Mar/2004 11:49:58, David Martin - Ivy League Software wrote: :: > It would be great if we could restrict by FQDN as well as IP. :: > :: > For example: System Administrator IP ... I have an off-site :: server that I :: > would like to admin from my office which has a DSL with a :: dynmaic IP ... :: > would be great if I could use my office.mydomain.com FQDN here. :: > :: > Thanks, :: > :: > David Martin :: > Ivy League Software :: > :: > :: > ------------------------------------------------------- :: > To unsubscribe please go to http://www.sambar.ch/list/ :: > :: > :: > :: > :: > :: > :: > :: :: :: :: :: :: :: ------------------------------------------------------- :: To unsubscribe please go to http://www.sambar.ch/list/ :: :: :: :: :: ------------------------------------------------------- To unsubscribe please go to http://www.sambar.ch/list/ --- Incoming mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.616 / Virus Database: 395 - Release Date: 3/8/2004 --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.616 / Virus Database: 395 - Release Date: 3/8/2004 ------------------------------------------------------- To unsubscribe please go to http://www.sambar.ch/list/
