Re: Tricky corporate gateway

C Matthew Curtin (cmcurtin@research.megasoft.com)
Fri, 13 Jun 1997 16:13:58 -0400 (EDT)


>>>>> "Marc" == Marc Briceno <marc@c2.net> writes:

Marc> Our company is behind a packet filtering router that blocks
Marc> UDP. I am using the u2t gateway without a problem for both our
Marc> internal (behind a firewall) and external (in front of the
Marc> firewall, but still behind the router) network.

Presumably, this is a problem because the at-home machines don't
connect to work, but rather, the Internet. (If this isn't the case,
you can just point 'em to the behind-the-firewall u2t gateway, but I
bet you already know that. :-)

If your access router is blocking all UDP and you want home machines
to go through one of your u2t gateways, you're (almost certainly)
hosed. The only way around that would be if you were to put up your
own u2t gateway outside of the company's DMZ (i.e., on a machine at
home, that has a dedicated, static IP link), run all of the at-home
clients through that (with the anonymous flag unset), and see if you
can talk Karl or Rocke into mapping that gateway's keys to your
at-work domain name.

--
Matt Curtin  Chief Scientist Megasoft Online  cmcurtin@research.megasoft.com
http://www.research.megasoft.com/people/cmcurtin/    I speak only for myself
Pull AGIS.NET's plug!   Crack DES NOW! http://www.frii.com/~rcv/deschall.htm