[linux-nisplus digest, Vol 1 #179 - 2 msgs]

GENE LORIOT gene.loriot at usa.net
Wed Jan 15 16:22:20 EST 2003 

I have not getten corporate approval; however, the nokea firewalls have 
a rules set for NIS+.  With this turned on, all should run fine.

Genew



linux-nisplus-request at lists.samba.org wrote:
> Send linux-nisplus mailing list submissions to
> 	linux-nisplus at lists.samba.org
> 
> To subscribe or unsubscribe via the World Wide Web, visit
> 	http://lists.samba.org/listinfo/linux-nisplus
> or, via email, send a message with subject or body 'help' to
> 	linux-nisplus-request at lists.samba.org
> 
> You can reach the person managing the list at
> 	linux-nisplus-admin at lists.samba.org
> 
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of linux-nisplus digest..."
> 
> 
> Today's Topics:
> 
>    1. NIS+ through NAT firewall (Ravi Kiran)
>    2. Re: NIS+ through NAT firewall (Bob Edwards)
> 
> --__--__--
> 
> Message: 1
> Date: Mon, 13 Jan 2003 13:36:06 -0800 (PST)
> From: Ravi Kiran <b_ravi_kiran at yahoo.com>
> Subject: NIS+ through NAT firewall
> To: linux-nisplus at lists.samba.org
> 
> --0-111241800-1042493766=:86645
> Content-Type: text/plain; charset=us-ascii
> 
> 
> hello Gurus,
> 
>                   Has anybody successfully implemented NIS+ across NAT
firewall?? I have a setup where clients(redhat linux 7.3) are behind a NAT
linux firewall(uses iptables) and the server is on the other side of the
firewall(solaris server). when I type niscat passwd.org_dir I get a NIS+
server unreaachable. 
> 
>      Can anybody tell me clearly what transactions happen from start and on
what ports in an order so that I can figure out what ports and protocols I
have to allow through the NAT firewall.
> 
> Thanking you guys in anticipation,
> 
> ravi
> 
> 
> 
> ---------------------------------
> Do you Yahoo!?
> Yahoo! Mail Plus - Powerful. Affordable. Sign up now
> --0-111241800-1042493766=:86645
> Content-Type: text/html; charset=us-ascii
> 
> <P>hello Gurus,</p>
> <P>                  Has anybody successfully implemented NIS+ across NAT
firewall?? I have a setup where clients(redhat linux 7.3) are behind a NAT
linux firewall(uses iptables) and the server is on the other side of the
firewall(solaris server). when I type niscat passwd.org_dir I get a NIS+
server unreaachable. </p>
> <P>     Can anybody tell me clearly what transactions happen from start and
on what ports in an order so that I can figure out what ports and protocols I
have to allow through the NAT firewall.</p>
> <P>Thanking you guys in anticipation,</p>
> <P>ravi</p><p><br><hr size=1>Do you Yahoo!?<br>
> <a href="http://rd.yahoo.com/mail/mailsig/*http://mailplus.yahoo.com">Yahoo!
Mail Plus</a> - Powerful. Affordable. <a
href="http://rd.yahoo.com/mail/mailsig/*http://mailplus.yahoo.com">Sign up
now</a>
> --0-111241800-1042493766=:86645--
> 
> --__--__--
> 
> Message: 2
> Date: Tue, 14 Jan 2003 10:04:03 +1100
> From: Bob Edwards <Robert.Edwards at anu.edu.au>
> To: Ravi Kiran <b_ravi_kiran at yahoo.com>
> Cc: linux-nisplus at lists.samba.org
> Subject: Re: NIS+ through NAT firewall
> 
> 
> I knew I should have kept better documentation when we tried this experiment

> several years ago on one of our systems. We ended up using LDAP, which works

> fine through a NAT firewall.
> 
>  From memory, we had to give the NAT firewall machine a pseudo credential on

> the NIS+ server, and then use this same credential for all the clients
sitting 
> behind the NAT firewall - ie. they all had the same credential, which may
not 
> be an optimal situation for you.
> 
> As for the sequence of NIS+ packets between the client and server, why don't

> you fire up tcpdump on the client and just watch them directly? Basically,
all 
> NIS+ traffic is occuring over TCP connections and always start from the 
> client, so if your NAT firewall allows any TCP connection through that is 
> originated from the inside (a usual scenario), then it should work, if you
get 
> the credential correct.
> 
> Cheers,
> 
> Bob Edwards.
> 
> Ravi Kiran wrote:
> > hello Gurus,
> > 
> >                   Has anybody successfully implemented NIS+ across NAT 
> > firewall?? I have a setup where clients(redhat linux 7.3) are behind a 
> > NAT linux firewall(uses iptables) and the server is on the other side of 
> > the firewall(solaris server). when I type niscat passwd.org_dir I get a 
> > NIS+ server unreaachable.
> > 
> >      Can anybody tell me clearly what transactions happen from start and 
> > on what ports in an order so that I can figure out what ports and 
> > protocols I have to allow through the NAT firewall.
> > 
> > Thanking you guys in anticipation,
> > 
> > ravi
> > 
> > 
> > ------------------------------------------------------------------------
> > Do you Yahoo!?
> > Yahoo! Mail Plus 
> > <http://rd.yahoo.com/mail/mailsig/*http://mailplus.yahoo.com> - 
> > Powerful. Affordable. Sign up now 
> > <http://rd.yahoo.com/mail/mailsig/*http://mailplus.yahoo.com>
> 
> 
> 
> 
> --__--__--
> 
> _______________________________________________
> linux-nisplus mailing list
> linux-nisplus at lists.samba.org
> http://lists.samba.org/listinfo/linux-nisplus
> 
> 
> End of linux-nisplus Digest



Gene Loriot, CSA/SCNA	
"...on a clear disk you can seek forever..."
Farm Side Systems

More information about the linux-nisplus mailing list