Firewalls: Relaying UDP through a TCP tunnel

Firewalls
(August 1996)

Indexed By Thread: [Previous] [Next]

Subject:	Relaying UDP through a TCP tunnel
From:	Michael Dillon <michael @ memra . com>
Organization:	Memra Software Inc. - Internet consulting
Date:	Wed, 21 Aug 1996 15:04:50 -0700 (PDT)
To:	FireWalls @ GreatCircle . COM
In-reply-to:	<Pine . A32 . 3 . 91 . 960821095426 . 33560B-100000 @ carfax . ims . advantis . com>

On Wed, 21 Aug 1996, Peter Yau wrote:

> I'm trying to determine the security risk associated with an external Lotus
> Notes Servers replicating with internal Notes Servers behind the Firewall.
> Since the replication session is udp based (port 1352 at the target end), 
> what are the range of udp ports (presumably the upper range) that the source
> end (initiating) will end up opening for the replication session. 

Has anyone done anything for a firewall that can take UDP packets, stuff
them into TCP packets addressed to a specific UDP relay socket address
and then unstuff them at the other end?

Or is this idea no better than simply opening up a range of UDP ports and
just filtering out IP addresses that you don't want to let through?

Michael Dillon                   -               ISP & Internet Consulting
Memra Software Inc.              -                  Fax: +1-604-546-3049
http://www.memra.com             -               E-mail: michael @
 memra .
 com

References:

Security with Lotus Notes 4
From: Peter Yau <pyau @ carfax . ims . advantis . com>

Indexed By Date	Previous:	Re: telnet and nntp passthru From: Brian Hatch <bri @ ifokr . org>
Indexed By Date	Next:	Microsoft Catapult? From: Rob Douglas <rob @ USCAtl . com>
Indexed By Thread	Previous:	Re: Security with Lotus Notes 4 From: Marc Mosko <marc @ tear . com>
Indexed By Thread	Next:	Remove from mail list From: plupa @ sparky . sparky . sdd . tracor . com (Paul Lupa X4184)