[prev in list] [next in list] [prev in thread] [next in thread]
List: sidewinder
Subject: [Sidewinder] problem with ACL
From: "Miguel Garcia" <mtalavera () email ! bancrecer ! com ! mx>
Date: 2002-03-01 23:06:33
[Download RAW message or body]
hello:
the last sunday we had to disable an ACL rule for a little time and then we
be able this rule, in the moment has not problem but the monday we saw that
the NAT property in this ACL rule was changed automaticatly from NONE to
LOCAL HOST this was a big problem, in this case we coud not audit access in
this period of time and we do not know what happen.
Is this a problem of the product?
are there a patch?
could you help us?
----- Original Message -----
From: <sidewinder-request@adeptech.com>
To: <sidewinder@adeptech.com>
Sent: Thursday, February 28, 2002 11:02 AM
Subject: Sidewinder digest, Vol 1 #141 - 4 msgs
> Send Sidewinder mailing list submissions to
> sidewinder@adeptech.com
>
> To subscribe or unsubscribe via the World Wide Web, visit
> http://mail.adeptech.com/mailman/listinfo/sidewinder
> or, via email, send a message with subject or body 'help' to
> sidewinder-request@adeptech.com
>
> You can reach the person managing the list at
> sidewinder-admin@adeptech.com
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of Sidewinder digest..."
>
>
> Today's Topics:
>
> 1. RE: access to web server (Paul Rehovsky)
> 2. Re: access to web server (Christoph =?iso-8859-1?Q?K=FCtter?=)
> 3. (no subject) (Hudson Delbert J Contr 61 CS/SCBN)
> 4. List (Cisternas Gonzalo)
>
> --__--__--
>
> Message: 1
> From: Paul Rehovsky <prehovsky@mmsbill.net>
> To: "'Ing. Bernardo Calatayud Lira'" <bernardo@ipdsa.com>
> Cc: "Sidewinder Mailing List (E-mail)" <sidewinder@adeptech.com>
> Subject: RE: [Sidewinder] access to web server
> Date: Wed, 27 Feb 2002 11:34:37 -0600
>
> Hi Bernardo,
>
> Be very careful allowing http into your trusted network. Consider setting
> up a DMZ burb and putting the web server there.
>
> As I remember you can use the http proxy in transparent mode and still
> require authentication. Seems to me that it was just a matter of enabling
> authentication on the proxy server and then enabling it in the acl as
well.
> (sorry, I no longer have a sidewinder in front of me, new job) Hopefully
> someone else will be able to shed some light.
>
> What do you want to use to authenticate the people coming in?
>
> Cheers,
> Paul
>
> -----Original Message-----
> From: Ing. Bernardo Calatayud Lira [mailto:bernardo@ipdsa.com]
> Sent: Wednesday, February 27, 2002 10:29 AM
> To: 'sidewinder@adeptech.com'
> Subject: [Sidewinder] access to web server
>
>
> hi guys
> Well i have a sidewinder with two burbs (Internet, Internal) and in my
> internal burb i have a web server, then i want to publish this server
> in to internet but at the same time before to access i need to
> authenticate all of them, i know that i can use web proxy to
> authenticate but the people in internet have to point as proxy server to
> external interface of Sidewinder their browser, and this is not natural
> when you are conected to internet, the question is how can i set up this
> scenario,thanks for you time all of you,
>
> Regards
>
> Bernardo
>
> --__--__--
>
> Message: 2
> Date: Wed, 27 Feb 2002 18:41:14 +0100
> To: "Ing. Bernardo Calatayud Lira" <bernardo@ipdsa.com>,
> "'sidewinder@adeptech.com'" <sidewinder@adeptech.com>
> From: Christoph =?iso-8859-1?Q?K=FCtter?= <cku@tro.net>
> Subject: Re: [Sidewinder] access to web server
>
> Hi Bernado,
>
> Use the WebProxy with http_accel_mode as described in Chapter 12.12
> Changing to Transparent Mode in the Administarion Guide.
> But be aware if you want do do an authentication on your internal
> Webserver. The Squid uses the Authentication in the HTTP-Header, so you
> cant use this Authentication-Header-Field for authentication at your
> Webserver; the Field will be refilled, so Squid will disallow the HTTP
Session.
>
> At 10:28 27.02.2002 -0600, Ing. Bernardo Calatayud Lira wrote:
> >hi guys
> >Well i have a sidewinder with two burbs (Internet, Internal) and in my
> >internal burb i have a web server, then i want to publish this server
> >in to internet but at the same time before to access i need to
> >authenticate all of them, i know that i can use web proxy to
> >authenticate but the people in internet have to point as proxy server to
> >external interface of Sidewinder their browser, and this is not natural
> >when you are conected to internet, the question is how can i set up this
> >scenario,thanks for you time all of you,
> >
> >Regards
> >
> >Bernardo
>
> Mit freundlichen Gruessen,
> Christoph Kütter
>
>
> --__--__--
>
> Message: 3
> From: Hudson Delbert J Contr 61 CS/SCBN <Delbert.Hudson@LOSANGELES.AF.MIL>
> To: "'sidewinder@adeptech.com'" <sidewinder@adeptech.com>
> Date: Wed, 27 Feb 2002 09:52:45 -0800
> Subject: [Sidewinder] (no subject)
>
> all,
>
> does anyone know of an atm nic that is supported by secure for the
> sidewinder.
>
>
>
>
> Hudson, Delbert J. Contr 61 CS/CSBN
> Los Angeles Air Force Base
> El Segundo, CA.
> DSN: 833-2762
> PHONE: 310-363-2762
> FAX: 310-363-6900
>
>
> --__--__--
>
> Message: 4
> From: Cisternas Gonzalo <gcisternas@NorthSupply.Cl>
> To: sidewinder@adeptech.com
> Date: Wed, 27 Feb 2002 16:40:29 -0300
> Subject: [Sidewinder] List
>
> Hello World:
>
> Does any have succesfull experiences with the Compaq Proliant ML 350
> G2?
>
> This is because the old ML 350 was retired by Compaq.
>
> Thanks in advance.
>
>
> > Gonzalo A. Cisternas Márquez
> > Ingeniero de Proyectos / Project Engineer
> > mailto:gcisternas@northsupply.cl http://www.northsupply.cl
> > La Concepción 177 Providencia, Santiago, CHILE.
> > Tel: (56) 2 550 58 00 ext. 1332 - Fax: (56) 2 555 48 15
> >
> Disclaimer
> The contents of this message is confidential, based in the professional
and
> ethical agreement, and can not be used, reproduced, transmitted or stored
in
> any way by different people rather than the located on the To: or Cc:
> fields. If you received this e-mal by mistake, please notify to the sender
> of the message and remove the message and all of its attachements from
your
> computer..
> La informacion contenida en esta transmision es confidencial, amparada por
> Secreto Profesional y no puede ser usada, reproducida ni divulgada por
otras
> personas que sus destinatarios. Si ha recibido esta transmision por error,
> por favor avise por e-mail o notifique al remitente telefonicamente, luego
> elimine el material de su equipo.
>
>
>
> --__--__--
>
> _______________________________________________
> Sidewinder mailing list
> Sidewinder@adeptech.com
> http://mail.adeptech.com/mailman/listinfo/sidewinder
>
>
> End of Sidewinder Digest
_______________________________________________
Sidewinder mailing list
Sidewinder@adeptech.com
http://mail.adeptech.com/mailman/listinfo/sidewinder
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic