bbproxy to hobbit server

4 messages in this thread

list Asif Iqbal · Tue, 20 Jun 2006 12:14:57 -0400 ·

Hi

Our network setup in a way that ecery client needs to be in the Firewall ACL
to be allowed to talk to hobbit server on port 1984. Now if I use a bbproxy
which IP the hobbit server sees? The hobbit clients' IPs or just the bbproxy
server's IP?

clients --> bbproxy server --> hobbit server

The hobbit server and bbproxy server are separate servers on separate
networks

Thanks

-- 
Asif Iqbal
PGP Key: 0xE62693C5 KeyServer: pgp.mit.edu

list Henrik Størner · Tue, 20 Jun 2006 23:52:39 +0200 ·

▸ quoted from Asif Iqbal

On Tue, Jun 20, 2006 at 12:14:57PM -0400, Asif Iqbal wrote:

Our network setup in a way that ecery client needs to be in the Firewall ACL
to be allowed to talk to hobbit server on port 1984. Now if I use a bbproxy
which IP the hobbit server sees? The hobbit clients' IPs or just the bbproxy
server's IP?

The hobbit server will see all connections as coming from the bbproxy
server's IP.

clients --> bbproxy server --> hobbit server

An accurate depiction of the connections.

As a side note, even though the Hobbit server sees connections as coming
from the bbproxy server, the data sent by the proxy server includes the
original IP of the client which originated the message. So even though
data is passing through the proxy, status messages will still show the
real IP in the "Status message received from ..." line.

Regards,
Henrik

list Asif Iqbal · Wed, 21 Jun 2006 01:25:37 -0400 ·

▸ quoted from Henrik Størner

On 6/20/06, Henrik Stoerner <user-ce4a2c883f75@xymon.invalid> wrote:

On Tue, Jun 20, 2006 at 12:14:57PM -0400, Asif Iqbal wrote:

Our network setup in a way that ecery client needs to be in the Firewall

ACL

to be allowed to talk to hobbit server on port 1984. Now if I use a
bbproxy
which IP the hobbit server sees? The hobbit clients' IPs or just the
bbproxy
server's IP?

The hobbit server will see all connections as coming from the bbproxy
server's IP.

clients --> bbproxy server --> hobbit server

An accurate depiction of the connections.

As a side note, even though the Hobbit server sees connections as coming
from the bbproxy server, the data sent by the proxy server includes the
original IP of the client which originated the message. So even though
data is passing through the proxy, status messages will still show the
real IP in the "Status message received from ..." line.


So in the acl list of the Firewall--that is infront of the hobbit server--I
guess I should just need to add the bbproxy's IP correct?


Regards,

Henrik

-- 
Asif Iqbal
PGP Key: 0xE62693C5 KeyServer: pgp.mit.edu

list Henrik Størner · Wed, 21 Jun 2006 07:37:53 +0200 ·

▸ quoted from Asif Iqbal

On Wed, Jun 21, 2006 at 01:25:37AM -0400, Asif Iqbal wrote:

So in the acl list of the Firewall--that is infront of the hobbit server--I
guess I should just need to add the bbproxy's IP correct?

Yes.


Regards,
Henrik

bbproxy to hobbit server 🔗 link

bbproxy to hobbit server