Firewalls: Re: appletalk remote access through a firewall?

Firewalls
(June 1995)

Indexed By Thread: [Previous] [Next]

Subject:	Re: appletalk remote access through a firewall?
From:	hue @ island . com (Jonathan Hue)
Date:	Sun, 11 Jun 1995 03:09:36 -0800
To:	anthony . baxter @ aaii . oz . au
Cc:	firewalls @ greatcircle . com

> I am being pressured very very heavily to allow ARA (appletalk remote
> access) through our firewall, specifically through a dial-in modem pool,

Do you really mean "through our firewall", as in the ARA server is on
the outside and your firewall lets AppleTalk through???

The only way I would consider doing this is if the router connecting you
to untrusted networks does not route AppleTalk.  While it is pretty much
a given that in the U.S. we only route IP, I understand that in
Australia you route AppleTalk on your Internet as well.

If you do have AppleTalk routed from the outside world, I would seriously
consider putting the ARA server on the inside, or on a private interface
connected to your firewall and only allowing AppleTalk packets from that
interface through to the inside.

-Jonathan               hue @
 island .
 com

Indexed By Date	Previous:	Re: appletalk remote access through a firewall? From: todd @ momentum . com . au (Todd Hooper)
Indexed By Date	Next:	proxy telnet From: flo @ rccn . net (Florentino Gameiro)
Indexed By Thread	Previous:	Re: appletalk remote access through a firewall? From: todd @ momentum . com . au (Todd Hooper)
Indexed By Thread	Next:	Hot Java Denial of Services Attack From: fc @ all . net (Dr. Frederick B. Cohen)