>From: "Hicks, Rick" <RHicks @
hussmann .
com>
>An easy solution is to use the plug-gw proxy that is in the TIS firewall
>toolkit (ftp.tis.com). It is perfect for news, it accepts connections to
>port 119 (or any port you wish to assign) and forwards everything to
>another host and port (the desired news server). Then you just tell the
>clients that the firewall is the news server and they will work as if
>they are connected to the external news server.
The downside is that it can only be configured to connect to a single
machine (which can differ based on who on the inside is connecting to
it); this works well if you've a single news server that you want to
connect to on the outside. But if you need to connect to a second news
server, like msnews.microsoft.com (leave it to MS to screw up Usenet
with their $#!@ non-propagating microsoft.* newsgroups), you'll need to
set up a second plug-gw configuration listening on another port (like
120 or whatever) to connect to msnews.microsoft.com:119 (or wherever).
BUT not all news readers let you specify non-standard ports, though you
can make Netscape do it. I think Netscape semi-elegantly handles
multiple servers, too; other (otherwise better) news readers won't
always be able to handle the differences in available groups very well
when you switch between servers (but that's not a firewall issue.)
-KH
|
|
