Firewalls: an interesting problem, IP and IPX reqd

Firewalls
(March 1996)

Indexed By Thread: [Previous] [Next]

Subject:	an interesting problem, IP and IPX reqd
From:	Colin Campbell <sgcccdc @ citec . qld . gov . au>
Date:	Fri, 22 Mar 1996 15:00:43 +1000 (EST)
To:	firewalls @ greatcircle . com

Hi,

Consider the following setup:



		       "internet"
			   |
			   |
			router
			   |
			   |
		---------------------------
		    |		    |
		    |		     \
		bastion		      ------router-----
		    |				       \
		    |					|
		-------------			    dialup network
			|
			|
		     router
		     	|
			|
		   "the inside"

Requirements:

	dialup users to have internet access
	dialup users to have telnet access to "inside"
	dialup users use IP or IPX (both over PPP)
	insiders to have internet access
	no access from the internet to inside
	no access from the internet to dialup network

Conditions:

	dialup users have RFC 1597 addresses 
	inside is several Class B and C nets
	dialup users can access only a subset of internal machines
	not every dialup user can access every available internal machine

Any bright ideas out there? (esp wrt IPX)

Colin

Indexed By Date	Previous:	Re: Watchdog From: Mike Culver <mculver @ ncelec . com>
Indexed By Date	Next:	Re: Solaris Virtual Domains and Firewall IRX From: David Carmean <dlc @ silcom . com>
Indexed By Thread	Previous:	RE: JAVA From: Russ <Russ . Cooper @ RC . Toronto . on . ca>
Indexed By Thread	Next:	BOAF Sat April 6, Melbourne From: Julian Assange <proff @ suburbia . net>