Firewalls: RE: Firewalls-Digest V6 #217

Firewalls
(May 1997)

Indexed By Thread: [Previous] [Next]

Subject:	RE: Firewalls-Digest V6 #217
From:	"Hicks, Rick" <RHicks @ hussmann . com>
Date:	Thu, 15 May 1997 10:07:00 -0500
To:	Firewalls <Firewalls @ GreatCircle . COM>, "'rblair @ kde . state . ky . us'" <rblair @ kde . state . ky . us>

>Date: Wed, 14 May 1997 16:21:08 -0400
>From: "Blair, Randall - KDE DAS" <rblair @
 kde .
 state .
 ky .
 us>
>Subject: Static Routes
>
>What is the best way to configure an AIX host to only allow telnet
>connections from within its own IP subnet and then allow access from
>another host on another network for management?  Static routes?  What is
>the correct syntax ?

Routing is not going to help here, it only handles the network layer, IP,   
not the upper layer protocols, TCP and UDP.

You can use TCP wrappers (I would think that AIX has one distributed with   
it) to secure your telnet access, but SNMP is based on UDP and won't be   
protected by this.  You can protect your SNMP data by creating 'public'   
and 'private' community names (passwords) that are fairly cryptic, but I   
believe that these community names are passed in plain text so be careful   
not to have them sniffed; or have ANY password sniffed for that matter.


 -Rick

____________________________________________
Rick Hicks
Network Specialist
Hussmann Corporation
RHicks @
 Hussmann .
 com
http://www.hussmann.com

Indexed By Date	Previous:	Re: Gauntlet proxy 'opportunities' From: Mimi Herrmann <lothie @ tis . com>
Indexed By Date	Next:	Re: Filtering Inbound From: Char_Sample @ notes . pw . com
Indexed By Thread	Previous:	Re: Internet Policies and Procedures From: Pauline van Winsen - Uniq Professional Services <Pauline . van . Winsen @ uniq . com . au>
Indexed By Thread	Next:	Re: Firewalls-Digest V6 #217 From: Speaker <mwwheatl @ comanche . wildstar . net>