Christopher Sagayam
2005-Feb-20 10:04 UTC
is this configuration possible using shorewall ?
Is this possible using shorewall ? here is the setup that I need: many client computers C1 to C30 connect to the internet using ONE gateway computer server running shorewall proxy S1 client C1 connects to local LAN /shorewall proxy S1 and authenticates using username U1 S1 connects to SSH server external server ES1 authenticates using username EU1. client C1 can transfer files, upload and download or do SSH or SFTP to ES1 now client C1 has NO knowledge of the usernames and passwords needed for ES1 a mapping file or some mechanism defines to the shorewall proxy S1 that it needs to connect to ES1 using username EU1 if a client logs into it using username U1 Is the above possible in shorewall or is it possible in squid or socks or any other Linux proxy server for that matter ? Any help will be greatly appreciated Also can shorewall be used as a proxy/gateway for ssh and sftp client requests too ? Thanks chris
Christopher Sagayam wrote:> Is this possible using shorewall ? >No -- _Shorewall is not a Proxy!_ It is a tool for configuring Netfilter which is a stateful packet filter. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
Christopher Sagayam wrote:> Thanks for the response > > Can you please point me to any other proxy or software for achieving > my end result ? >Afraid not -- if I had known of anything, I would have mentioned it in my original post. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
On Sun, 2005-02-20 at 07:45 -0800, Tom Eastep wrote:> Christopher Sagayam wrote: > > Thanks for the response > > > > Can you please point me to any other proxy or software for achieving > > my end result ?Christopher I am not familiar with this but perhaps squid might be helpful to you? See http://www.squid-cache.org/. HTH Bram -- # Mertens Bram "M8ram" <bram-mertens@linux.be> Linux User #349737 # # debian testing kernel 2.6.8-1-686 i686 512MB RAM # # 10:36:39 up 12 days, 14:23, 6 users, load average: 1.15, 0.90, 0.57 #
Christopher Sagayam
2005-Feb-21 15:23 UTC
Re: is this configuration possible using shorewall ?
can squid be used as SSH or ftp proxy too ? chris On Mon, 21 Feb 2005 10:37:41 +0100, Bram Mertens <bram-mertens@linux.be> wrote:> On Sun, 2005-02-20 at 07:45 -0800, Tom Eastep wrote: > > Christopher Sagayam wrote: > > > Thanks for the response > > > > > > Can you please point me to any other proxy or software for achieving > > > my end result ? > > Christopher I am not familiar with this but perhaps squid might be > helpful to you? See http://www.squid-cache.org/. > > HTH > > Bram > -- > # Mertens Bram "M8ram" <bram-mertens@linux.be> Linux User #349737 # > # debian testing kernel 2.6.8-1-686 i686 512MB RAM # > # 10:36:39 up 12 days, 14:23, 6 users, load average: 1.15, 0.90, 0.57 # > > _______________________________________________ > Shorewall-users mailing list > Post: Shorewall-users@lists.shorewall.net > Subscribe/Unsubscribe: https://lists.shorewall.net/mailman/listinfo/shorewall-users > Support: http://www.shorewall.net/support.htm > FAQ: http://www.shorewall.net/FAQ.htm >
Eduardo Ferreira
2005-Feb-21 16:47 UTC
Re: is this configuration possible using shorewall ?
Chris wrote on 21/02/2005 12:23:21:> can squid be used as SSH or ftp proxy too ?ftp proxy, yes. SSH proxy, no. Usually, it''s the other way around - you use ssh as a tcp/ip forwarder...> > chris >cheers, ________________________ Eduardo Ferreira Icatu Holding S.A. Supervisor de TI (5521) 3804-8606