[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] NAT Question

Subject: Re: [cobalt-security] NAT Question
From: "Kevin D" <kdlists@xxxxxxxxxxxxxxx>
Date: Thu, 20 Sep 2001 12:59:38 -0400
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

> I've got a Qube2 and I was wondering about using NAT.
>
> Here is what I would like to do:
>
> - I run Lotus Notes on a server here that is behind our firewall (the
> Qube acts as our firewall)
> - I would like to have my users be able to get to Notes from outside the
> office, without moving the box outside the firewall.

John,

You can forward any set of ports from the Qube's IP to any internal
machine(s). Keep in mind that opening any hole in the firewall which points
at your internal server is akin to putting that server outside the firewall.
Any host, from anywhere, can connect to that open port, which essentially
means connecting to your internal server. I would be very hesitant to put a
lotus notes server in that situation.

Instead, I would recommend a VPN option. That might involve installing some
software on your qube from telnet. FreeS/Wan is a good option for this
http://www.freeswan.org/

Kevin

References:
- [cobalt-security] NAT Question
  - From: John Anderson

Prev by Date: Re: [cobalt-security] urgent question
Next by Date: SV: [cobalt-security] urgent question
Previous by thread: [cobalt-security] NAT Question
Next by thread: Re: [cobalt-security] NAT Question

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index