[hobbit] network configuration

[Rob Munsch]

I'll take a stab at this...
You have some clients in the DMZ, and the hobbit server is on the 
internal network, yes?

The DMZ must be on a specific subnet(s), so why couldn't the firewall be 
set to forward 1984 to your server from that subnet only?   Instead of 
client -> server of
<anything> -> 1984 -> hobbit server, 
then if frex your DMZ is 10.0.0.0/8, something like
10.0.0.0/8 -> 1984 -> hobbit server.

HTH, unless i've badly misunderstood the issue.


thomas.seglard.enata at cnp.fr wrote:

>
> Hello,
>
> I'm just writing to you to know if hobbit's clients could use one (and 
> only one) port e.g 1984 like hobbitd ? I got several servers into DMZ 
> and my network administrator asked me for the rules to apply in 
> firewalls...
> He doesn't want to open port from DMZ to internal network (where my 
> hobbit's server is). So, I hope a workaround exists for this because I 
> think that clients connect to hobbit server. He would to prevent a 
> rule like any -> 1984 or 1984 -> any...
>
> Sincerly,
>
> Thomas Seglard
>
> Ce message (et toutes ses pieces jointes eventuelles) est confidentiel 
> et etabli a l'intention exclusive de ses destinataires.
> Toute utilisation de ce message non conforme a sa destination, toute 
> diffusion ou toute publication, totale ou partielle, est
> interdite, sauf autorisation expresse.
> L'internet ne permettant pas d'assurer l'integrite de ce message, CNP 
> Assurances et ses filiales declinent toute responsabilite
> au titre de ce message, s'il a ete altere, deforme ou falsifie.
>
> *****
>
> This message and any attachments (the "message") are confidential and 
> intended solely for the addressees.
> Any unauthorised use or dissemination is prohibited.
> E-mails are susceptible to alteration.
> Neither CNP Assurances nor any of its subsidiaries or affiliates shall 
> be liable for the message if altered, changed or falsified.



-- 
Rob Munsch
Solutions For Progress IT