Hello,
Some time ago, david .
black @
e-mail .
com launched the debate on using a GUI
ftp client to connect thru FW1....
Now suppose this:
(ftp)
you ---------> FW1 (gateway) -------> host
>From a UNIX station, ftping is no problem,
* HOST: you connect to the gateway
* USER: give your user name on the gateway
* PASSWD: give your passwd on the gateway
* INTERNAL HOST: give the host to which you want to connect
and you get connected to that host.
Now supposedly your should be able to do the same from a GUI client by
giving out:
* HOST: the name of the gateway
* USER: when asked for your user name on the gateway, giving
host_username @
gateway_username@host
* PASSWD: host_passwd @
gateway_passwd
But as said David Black, it doesn't work !
Now to test things, I tried to ftp from a unix box thru the gateway and act
as if I came from a GUI client. That is:
* HOST: gateway
* USER: host_username @
gateway_username@host
.... STOP
and there it doesn't work. The gateway says it doesn't know the user
"host_username @
gateway_username@host" which seems to indicate it doesn't
interpret the @ in the username as it should, and looks in the database for
the name as is! No need to go further and give the passwd...
Has somebody worked this out ? Are there people from Checkpoint out there ?
Bruno MAMER
__________________________________________________________________
Bruno MAMER bruno .
mamer @
crpht .
lu
Centre de Recherche Public Henri Tudor - Computer Network Services
Our local archive on security :
http://www.crpht.lu/CNS/html/PubServ/Security/home.html
---------------------------------------------------------------
|
|
