[ILUG] DMZ
Ruairi Hickey
Ruairi.Hickey at collon.ie
Wed Nov 24 09:59:13 GMT 2010
On Wednesday 24 November 2010 09:49:14 Brendan Halpin wrote:
> I have two machines, A in the DMZ and B in the protected part of the
> network.
>
> B can see A, but A can't see (ping, etc) B unless B has initiated a
> connection (e.g., A can respond to B's HTTP requests).
>
> Is there a secure way to make a more general connection from B to A so
> that A can "see" B in a wider sense (ssh from A to B, read B-mounted
> samba share from A, etc.).
>
> Brendan
If you want A to be able to initiate a connection to B then you need to open
the firewall to allow this...
An alternative would be to enable port-forwarding on 'A's sshd_config and run a
reverse tunnel over ssh.
Ruairi
More information about the ILUG
mailing list