Pardon me as I am sure this question has been approached before..
My Co. is using IBM's SNG (running on a RS/6000 w/ AIX) as our
firewall. From the strategies I have observed listening to this list,
I have moved much of the overhead away from the Firewall. Our
firewall used to serve as a SOCKS Proxy, and now I have moved that
overhead to a Netscape Proxy Server. Now the firewall serves as just
a divider between the public and private. This strategy seems a lot
cleaner to me, thanks list.
And now my question:
I have recently been hit with requests for Telnet access from public
hosts to the private side of our network (through the firewall). What
is the current strategy in regards to this?
One possibility I see is to break the process at the firewall and
setup Telnet enabled accounts there. Have the user Telnet into the
firewall, and then from the firewall to our internal hosts. This
method seems "unclean" to me...Not to mention the overhead on the side
of the users to have to FTP their data to the firewall and then from
the firewall to the internal host...?? Thanks in advance for any
suggestions...
Paul
Follow-Ups:
|
|
