Hello,
We would like to grant access to someone external to our company (in
another town) with PPP. They have an AlphaServer and are located in
another town, 100 miles from here.
We would like to let them access one of our servers via PPP but we are
concerned with security and have some configuration questions. We are using
a very basic network configuration here, no DNS, no NIS. I am not a
networking guru so I don't know if we are using routed or gated or if we
need to use it.
Here is a schema of what we have:
----------
|Internet|--- ext client LAN -----------...
---------- | | |
| pc pc...
|
ext Client Server ---- PPP link ------ SecureID server
ether IP 192.17.4.58 |
Our Server (eg: 173.17.8.56)
|
-----Our LAN ------... ether
| | |
Our other servers pc pc...
As you can see, the external client are on a different network. They
are also connected to the internet (but they say there is a firewall
preventing access from the internet to their LAN). Even if there is a
firewall, we would like to restrict their acces to only specific servers
here. Our other servers are not necessarily on the same network segments.
And we would like that only ONE server from the client be able to contact
us (so that no one on their LAN or from the internet can pass through it to
reach us)
They will connect via PPP (dialout) to some box called a secureID server
(It understands PPP and will give them an IP address automatically. Aside
question: can the 'chat' program be used to ASK the user it's password ?
Once they are connected, what can we do to ensure that only their one
server is accessing ours ? How can we restrict the servers they can access
here ? We do not know their IP address, it will never be the same.
We would like an EASY solution to this problem, unless there is no easy
solution.
Received on Wed Oct 08 1997 - 17:52:42 NZDT