[Search for users] [Overall Top Noters] [List of all Conferences] [Download this site]

Conference gyro::internet_toolss

Title:	Internet Tools
Notice:	Report ALL NETSCAPE Problems directly to [email protected].rnet? Read note 448.L for beginner information.
Moderator:	teco.mro.dec.com::tecotoo.mro.dec.com::mayer

Created:	Fri Jun 25 1993
Last Modified:	Fri Jun 06 1997
Last Successful Update:	Fri Jun 06 1997
Number of topics:	4714
Total number of notes:	40609

4469.0. "feasible? mail server on red, accessible from blue" by MANM01::JOELJOSOL () Wed Feb 12 1997 22:52

    A customer is implementing a firewall solution for 200 users. But, they
    wanted their mail server to be on the red side so that they can access it
    from the home WITHOUT tunneling software. The problem is other than
    an exposed, insecure mail server (it is their own Web server), they
    also wanted to access it from the blue side.
    
    Our ISP partner claims that this is feasible. I disagree. Can anybody
    confirm that the goals of the customer are mutually exclusive?
    
    /joeljosol

T.R	Title	User	Personal Name	Date	Lines
4469.1		teco.mro.dec.com::tecotoo.mro.dec.com::mayer	Danny Mayer	`Thu Feb 13 1997 09:33`	12
	> Our ISP partner claims that this is feasible. I disagree. Can anybody > confirm that the goals of the customer are mutually exclusive? Of course it's feasible. You need to create a hole in the firewall for POP3/SMTP access. I assume you are talking about POP3/SMTP. However, with POP3 you basically end up downloading the mail to a local system. Does the customer really want to have their mail in two places? The alternative is IMAP4 which will allow them to leave the mail on the mail server, with an IMAP4 port hole through the firewall. Does the customer REALLY want to keep their mail exposed like this? Danny
4469.2	gxd and screend.conf	23329::CIMAFRANCA		`Fri Feb 14 1997 05:42`	6
	Joel, There's a generic proxy for TCP. On the IP level, you can also use screend. --Dominic
4469.3		BIGUN::nessus.cao.dec.com::Mayne	Wake up, time to die	`Sun Feb 16 1997 16:44`	6
	A generic proxy will do the job fine. As for packet filtering, it depends what kind of firewall it is. If it's AltaVista firewall for UNIX, screend will do the job. If it's AltaVista firewall for Windows NT, no packet filtering. At least one other Windows NT firewall does have packet filtering, though. PJDM
4469.4	mail from anywhere	CIMBAD::CROSBY		`Mon Feb 17 1997 15:12`	10
	On a similar vein... I have an outside of Digital customer who wants to be able to go up to an ATM like device and retrieve his e-mail from anywhere. It seems that this is doable, are there pointers to products/resources that might be helpful? gc
4469.5		BIGUN::nessus.cao.dec.com::Mayne	Wake up, time to die	`Mon Feb 17 1997 15:45`	6
	What kind of ATM like device? You could use AV tunnel to retrieve your internal mail from anywhere on the Internet, but what does an ATM like device have to do with it? PJDM
4469.6	ATM != ATM	DECCXL::WIBECAN	That's the way it is, in Engineering!	`Mon Feb 17 1997 16:07`	11
	>> What kind of ATM like device? I believe ATM means, in this case, "Automated Teller Machine": >> I have an outside of Digital customer who wants to be able to go up to an >> ATM like device and retrieve his e-mail from anywhere. That is, walk up to a kiosk, stick in a card and type your password, and read your E-mail. Brian
4469.7		CFSCTC::SMITH	Tom Smith MRO1-3/D12 dtn 297-4751	`Mon Feb 17 1997 16:16`	5
	See http://www.hotmail.com/ . It _would_ work from an ATM if you had an ATM with a light-weight WWW client. As it is, you have to go your local cyber-cafe. -Tom
4469.8	ATM	CIMBAD::CROSBY		`Mon Feb 17 1997 16:19`	17
	Brian's got it...I guess I'm dating myself... This customer wants to offer a service where anyone, from Digital, IBM, or Sam's cycle shop can walk up to one of these little phone-booth like devices and get their mail from their service provider. Can I take their username/pw and perform the necessary name translation to accomplish this. In those cases where I encountered two users with the same un/pw (such as gary@samscycle), I would have impose some types of rules. I apologize that the question is not more clearly stated, and I'm not looking for answers. Just pointers, or ideally,..."Yeah we did that...." Thanks. gc
4469.9		CIMBAD::CROSBY		`Mon Feb 17 1997 16:20`	5
	Tom, Thanks...Off I go. gc
4469.10	www.hotmail.com	CIMBAD::CROSBY		`Mon Feb 17 1997 16:36`	7
	Re: .7 www.hotmail.com connection failed...timed out. Not a good sign. gc
4469.11		CFSCTC::SMITH	Tom Smith MRO1-3/D12 dtn 297-4751	`Mon Feb 17 1997 21:45`	1
	Looks OK from here. Maybe it was on break.
4469.12	Radio based modems accomplish this too.	BASEX::EISENBRAUN	John Eisenbraun	`Tue Feb 18 1997 10:52`	6
	There are a couple of companies that are offering light weight e-mail pager like devices. I've also seen radio based modems that allow you to connect your laptop to your own network from just about anywhere. The above is a little different concept from the original note, but it is complementary/competing technology.
4469.13	I've seen on...	SKYLAB::FISHER	Gravity: Not just a good idea. It's the law!	`Tue Feb 18 1997 16:26`	11
	I've seen a gadget exactly like you describe. It was in the convention center in Anaheim at the last DECUS. It worked slick...had a mail client with a POP3 input and SMTP output. You give it your POP3 mailbox name and password and it retrieved your mail. Give it an SMTP server and you could send mail. Of course it would not fetch through the DEC firewall, but it was fine going to my ISP here in Nashua NH. Burns