Trying to use a Mac address for my firewall....help?
My office has a SuSE firewall and a SuSE 8.2 mail server behind it running imap. I can access my mail server from home because I setup my IP address on my firewall. Now, I'm trying to setup my laptop to access the mail server, but instead of using an IP, I want to use a MAC address. Why? Because I'm on the go and I can't always know what IP address I'm going to have and I don't want to leave that port wide open all the time. So, what entry do I make in my SuSEfirewall.conf so that my laptop's MAC address will be allowed through???? Thanks, Tom -- Tom Nielsen Neuro Logic Systems 805.389.5435 x18 www.neuro-logic.com
* Tom Nielsen;
My office has a SuSE firewall and a SuSE 8.2 mail server behind it running imap. I can access my mail server from home because I setup my IP address on my firewall. Now, I'm trying to setup my laptop to access the mail server, but instead of using an IP, I want to use a MAC address. Why? Because I'm on the go and I can't always know what IP address I'm going to have and I don't want to leave that port wide open all the time.
So, what entry do I make in my SuSEfirewall.conf so that my laptop's MAC address will be allowed through????
Nothing if I understand you correctly, as MAC Addresses will change as your packet travels from one router to another one. Using MAC address is an option when you have it on your LOCAL LAN and the laptop is connected to the gateway (or the firewall machine) your best bet is VPN or ssh as I see it -- Togan Muftuoglu Unofficial SuSE FAQ Maintainer Please reply to the list; http://susefaq.sf.net Please don't CC me.
On Fri, 2003-12-19 at 03:39, Togan Muftuoglu wrote:
* Tom Nielsen;
on 18 Dec, 2003 wrote: My office has a SuSE firewall and a SuSE 8.2 mail server behind it running imap. I can access my mail server from home because I setup my IP address on my firewall. Now, I'm trying to setup my laptop to access the mail server, but instead of using an IP, I want to use a MAC address. Why? Because I'm on the go and I can't always know what IP address I'm going to have and I don't want to leave that port wide open all the time.
So, what entry do I make in my SuSEfirewall.conf so that my laptop's MAC address will be allowed through????
Nothing if I understand you correctly, as MAC Addresses will change as your packet travels from one router to another one. Using MAC address is an option when you have it on your LOCAL LAN and the laptop is connected to the gateway (or the firewall machine)
your best bet is VPN or ssh as I see it
I can't get the VPN to work for the life of me. I just don't get it. As far as ssh, how can I use that with email? Tom -- Tom Nielsen Neuro Logic Systems 805.389.5435 x18 www.neuro-logic.com
* Tom Nielsen;
I can't get the VPN to work for the life of me. I just don't get it. As far as ssh, how can I use that with email?
with openvpn it should be fairly simple comes with SuSE 8.2 ( sorry can not check for 9.0 or other SuSE version) with ssh you have lots of options I use it via console, (ehmm mutt user) you can do Xforwarding etc. or setup webmail so everyone in your company can use it (with SSL and authentication it should be fairly secure) HTH -- Togan Muftuoglu Unofficial SuSE FAQ Maintainer Please reply to the list; http://susefaq.sf.net Please don't CC me.
On Fri, 2003-12-19 at 09:58, Togan Muftuoglu wrote:
* Tom Nielsen;
on 19 Dec, 2003 wrote: I can't get the VPN to work for the life of me. I just don't get it. As far as ssh, how can I use that with email?
with openvpn it should be fairly simple comes with SuSE 8.2 ( sorry can not check for 9.0 or other SuSE version)
With openvpn, if my workstation is behind my firewall, does my workstation need to have openvpn installed and running??
with ssh you have lots of options I use it via console, (ehmm mutt user) you can do Xforwarding etc.
or setup webmail so everyone in your company can use it (with SSL and authentication it should be fairly secure)
Got that setup. It's just easier to use an imap program. -- Tom Nielsen Neuro Logic Systems 805.389.5435 x18 www.neuro-logic.com
* Tom Nielsen;
On Fri, 2003-12-19 at 09:58, Togan Muftuoglu wrote:
* Tom Nielsen;
on 19 Dec, 2003 wrote: I can't get the VPN to work for the life of me. I just don't get it. As far as ssh, how can I use that with email?
with openvpn it should be fairly simple comes with SuSE 8.2 ( sorry can not check for 9.0 or other SuSE version)
With openvpn, if my workstation is behind my firewall, does my workstation need to have openvpn installed and running??
http://openvpn.sourceforge.net/ please read it -- Togan Muftuoglu Unofficial SuSE FAQ Maintainer Please reply to the list; http://susefaq.sf.net Please don't CC me.
On Fri, 2003-12-19 at 12:04, Togan Muftuoglu wrote:
* Tom Nielsen;
on 19 Dec, 2003 wrote: On Fri, 2003-12-19 at 09:58, Togan Muftuoglu wrote:
* Tom Nielsen;
on 19 Dec, 2003 wrote: I can't get the VPN to work for the life of me. I just don't get it. As far as ssh, how can I use that with email?
with openvpn it should be fairly simple comes with SuSE 8.2 ( sorry can not check for 9.0 or other SuSE version)
With openvpn, if my workstation is behind my firewall, does my workstation need to have openvpn installed and running??
http://openvpn.sourceforge.net/
please read it
Ya, I have been. My problem, and I can't find the answer, is what is the setup for a client (with a static private IP) that is behind a firewall, and the server (with a static private IP) is behind another firewall? I can't seem to figure that out. Example: Home system (client) - 192.168.2.3; Home's Firewall External IP - 1.2.3.4 Work system (server) - 192.168.0.2; Work's Firewall External IP - 5.6.7.8 Anyone have any thoughts? Tom -- Tom Nielsen Neuro Logic Systems 805.389.5435 x18 www.neuro-logic.com
* Tom Nielsen;
Example:
Home system (client) - 192.168.2.3; Home's Firewall External IP - 1.2.3.4 Work system (server) - 192.168.0.2; Work's Firewall External IP - 5.6.7.8
Anyone have any thoughts?
did you follow this document also http://mia.ece.uic.edu/~papers/volans/openvpn.html -- Togan Muftuoglu Unofficial SuSE FAQ Maintainer Please reply to the list; http://susefaq.sf.net Please don't CC me.
On Fri December 19 2003 03:25 pm, Tom Nielsen wrote:
On Fri, 2003-12-19 at 12:04, Togan Muftuoglu wrote:
* Tom Nielsen;
on 19 Dec, 2003 wrote: On Fri, 2003-12-19 at 09:58, Togan Muftuoglu wrote:
* Tom Nielsen;
on 19 Dec, 2003 wrote: I can't get the VPN to work for the life of me. I just don't get it. As far as ssh, how can I use that with email?
with openvpn it should be fairly simple comes with SuSE 8.2 ( sorry can not check for 9.0 or other SuSE version)
With openvpn, if my workstation is behind my firewall, does my workstation need to have openvpn installed and running??
http://openvpn.sourceforge.net/
please read it
Ya, I have been. My problem, and I can't find the answer, is what is the setup for a client (with a static private IP) that is behind a firewall, and the server (with a static private IP) is behind another firewall? I can't seem to figure that out.
Example:
Home system (client) - 192.168.2.3; Home's Firewall External IP - 1.2.3.4 Work system (server) - 192.168.0.2; Work's Firewall External IP - 5.6.7.8
Anyone have any thoughts?
My thought is that if the firewall is worth anything at all, the IP address of the server behind it matters not. You will never be able to see it or talk to it without dealing with the firewall first. I think you will have to have a chink in the firewall in order to get through.
Tom
-- +----------------------------------------------------------------------------+ + Bruce S. Marshall bmarsh@bmarsh.com Bellaire, MI 12/19/03 16:41 + +----------------------------------------------------------------------------+ "Insomnia isn't anything to lose sleep over."
On Fri, 2003-12-19 at 13:03, Togan Muftuoglu wrote:
* Tom Nielsen;
on 19 Dec, 2003 wrote: Example:
Home system (client) - 192.168.2.3; Home's Firewall External IP - 1.2.3.4 Work system (server) - 192.168.0.2; Work's Firewall External IP - 5.6.7.8
Anyone have any thoughts?
did you follow this document also
Thank you very, very much! This is very helpful....pictures. I'm not like most of the guys on this list. I'm not a computer guy in real life...just a hack. So it's kind of hard to understand most of this stuff. Tom -- Tom Nielsen Neuro Logic Systems 805.389.5435 x18 www.neuro-logic.com
On Fri, 2003-12-19 at 13:43, Bruce Marshall wrote:
On Fri December 19 2003 03:25 pm, Tom Nielsen wrote:
On Fri, 2003-12-19 at 12:04, Togan Muftuoglu wrote:
* Tom Nielsen;
on 19 Dec, 2003 wrote: On Fri, 2003-12-19 at 09:58, Togan Muftuoglu wrote:
* Tom Nielsen;
on 19 Dec, 2003 wrote: I can't get the VPN to work for the life of me. I just don't get it. As far as ssh, how can I use that with email?
with openvpn it should be fairly simple comes with SuSE 8.2 ( sorry can not check for 9.0 or other SuSE version)
With openvpn, if my workstation is behind my firewall, does my workstation need to have openvpn installed and running??
http://openvpn.sourceforge.net/
please read it
Ya, I have been. My problem, and I can't find the answer, is what is the setup for a client (with a static private IP) that is behind a firewall, and the server (with a static private IP) is behind another firewall? I can't seem to figure that out.
Example:
Home system (client) - 192.168.2.3; Home's Firewall External IP - 1.2.3.4 Work system (server) - 192.168.0.2; Work's Firewall External IP - 5.6.7.8
Anyone have any thoughts?
My thought is that if the firewall is worth anything at all, the IP address of the server behind it matters not. You will never be able to see it or talk to it without dealing with the firewall first.
I think you will have to have a chink in the firewall in order to get through.
"chink"....now....that's a bad thing, right? -- Tom Nielsen Neuro Logic Systems 805.389.5435 x18 www.neuro-logic.com
* Tom Nielsen;
My thought is that if the firewall is worth anything at all, the IP address of the server behind it matters not. You will never be able to see it or talk to it without dealing with the firewall first.
I think you will have to have a chink in the firewall in order to get through.
"chink"....now....that's a bad thing, right?
1. Setup the openvpn as the outline suggests then follow http://openvpn.sourceforge.net/man.html#lbAR for simple example I have not had a time to rad it in full yet FW_DEV_EXT in your /etc/sysconfig/SuSEfirewall should have "tun0" also. If you have your UDP as FW_ALLOW_INCOMING_HIGHPORTS_UDP="DNS 5000" you should be up and running First try then when faced with problems give the details and we shall see if help is available. Hurry up as I am leaving for holiday Sunday and will not read any mails for two weeks :-) Home home sweet home I am coming :-) Now backto chrooting services 2 finished 6 to go -- Togan Muftuoglu Unofficial SuSE FAQ Maintainer Please reply to the list; http://susefaq.sf.net Please don't CC me.
-----Original Message-----
From: Tom Nielsen
* Ken Schneider;
-----Original Message----- From: Tom Nielsen
To: Suse Date: Fri, 19 Dec 2003 13:47:11 -0800 Subject: Re: [SLE] Trying to use a Mac address for my firewall....help? Is it just me or are other people on this list getting 2-3 copies of every email that Tom sends.
use of procmail may help (maybe thats why I only get 1 :0 Wh: msgid.lock |formail -D 8192 msgid.cache -- Togan Muftuoglu Unofficial SuSE FAQ Maintainer Please reply to the list; http://susefaq.sf.net Please don't CC me.
Is it just me or are other people on this list getting 2-3 copies of
every
email that Tom sends.
use of procmail may help (maybe thats why I only get 1
procmail has nothing to do with it. I am getting two copies of the email. I have looked through the logs on the email server and it shows two seperate connections. Didn't we have the same problem with soneone else a couple of weeks ago? Ken
My wife says I'm over-bearing. Maybe this is what she means. I haven't had anyone else I've emailed directly to say that there's been a problem. I would like to know if there is. Tom On Fri, 2003-12-19 at 14:28, Ken Schneider wrote:
Is it just me or are other people on this list getting 2-3 copies of
every
email that Tom sends.
use of procmail may help (maybe thats why I only get 1
procmail has nothing to do with it. I am getting two copies of the email. I have looked through the logs on the email server and it shows two seperate connections.
Didn't we have the same problem with soneone else a couple of weeks ago?
Ken
-- Tom Nielsen Neuro Logic Systems 805.389.5435 x18 www.neuro-logic.com
On Fri, Dec 19, 2003 at 05:28:56PM -0500 or thereabouts, Ken Schneider wrote:
Is it just me or are other people on this list getting 2-3 copies of every email that Tom sends.
use of procmail may help (maybe thats why I only get 1
procmail has nothing to do with it. I am getting two copies of the email. I have looked through the logs on the email server and it shows two seperate connections.
I also am getting two copies of Tom's mail -- Gary
On Fri December 19 2003 05:15 pm, Ken Schneider wrote:
-----Original Message----- From: Tom Nielsen
To: Suse Date: Fri, 19 Dec 2003 13:47:11 -0800 Subject: Re: [SLE] Trying to use a Mac address for my firewall....help? Is it just me or are other people on this list getting 2-3 copies of every email that Tom sends.
Ken
It must be you.... On the other hand, maybe it just seems like 3 copies... :-) -- +----------------------------------------------------------------------------+ + Bruce S. Marshall bmarsh@bmarsh.com Bellaire, MI 12/19/03 18:27 + +----------------------------------------------------------------------------+ "Old bakers never die, they just quit making dough."
participants (5)
-
Bruce Marshall
-
Gary
-
Ken Schneider
-
Togan Muftuoglu
-
Tom Nielsen