HPE Community
HPE 9000 and HPE e3000 Servers
1827299 Members
2965 Online
109961 Solutions
New Discussion

SWC - How can I go through a firewall?

 
Giuseppe Perricone
New Member

‎07-25-2001 05:26 AM

‎07-25-2001 05:26 AM

SWC - How can I go through a firewall?

Hi all, i've installalled a Secure web Console on my Sistems and I want to know how can I go through a firewall.
Someone can help me?
0 Kudos
4 REPLIES 4
Bill McNAMARA_1
Honored Contributor

‎07-25-2001 07:40 AM

‎07-25-2001 07:40 AM

Re: SWC - How can I go through a firewall?

Firewall Security

Firewall security prevents unauthorized users or applets from accessing the Intranet. Using a firewall ensures that whatever isn't explicitly allowed into an Intranet is refused entry. A firewall also provides an audit trail of system access, including source, destination, protocol used, and other details. Datacenters will already have a firewall in place.

In addition, Central Web Console works specifically with ports 1916 and 1917. The Central Web Console Applet (terminal emulation window) will not start unless those ports are configured to pass through the firewall.

A system administrator can configure the Central Web Console to use a port number that's already allowed through the firewall, such as port 23 for Telnet.

The Central Web Console's dependence on port configuration to a firewall helps to ensure secure connections and safe transmissions of information.


from:
http://docs.hp.com//hpux/onlinedocs/J6352-90001/00/00/11-con.html

Later,
Bill
It works for me (tm)
0 Kudos
Giuseppe Perricone
New Member

‎07-25-2001 08:10 AM

‎07-25-2001 08:10 AM

Re: SWC - How can I go through a firewall?

Hi, Bill

Thanks for your answer. The problem is that I'm not using CENTRAL web console but Secure Web Console.

The HP Secure Web Console is a small (about the size of a VCR tape) Internet appliance that makes the HP 9000 and HP 3000 server consoles available over a corporate Intranet or Internet for the purpose of remote management access to the server console.

I need to use them outside a Firewall (PIX CISCO) i've already allowed through the firewall port 23 for Telnet and 80 for HTTP, but this hasn't been sufficient...

By, Giuseppe
0 Kudos
Bill Hassell
Honored Contributor

‎07-26-2001 08:22 AM

‎07-26-2001 08:22 AM

Re: SWC - How can I go through a firewall?

The Secure Web Console is not recommended for firewall access as the character encryption is a simple substitution cipher. Instead, the best solution is to get the HP SSL Accelerator to put in front of the Web Console's LAN.

The web console uses port 80 to get started but then (incorrectly) uses port 23 for non-telnet protocol. What happens is that most firewall boxes (correctly) shutdown port 23 when it detects non-telnet activity on the port. On some firewalls, you can defeat this security feature by allowing any IP address to use port 23, but then you might as well disconnect the firewall since it isn't doing much good.

There is a beta version of the Web Console firmware available that will allow you to configure some other port (say, 9207 or whatever) to be the Java code port besides port 80 for the web portion. Ask your HP representative for a copy. Since the new Web Console firmware still does not use SSL, it would still be a better solution to:

a. use the HP SSL Accelerator box

b. Use the new version 2 Central Web console which is a software package that runs on HP-UX. The HP-UX machine would have several (up to 64) ports connected to various systems, and using Apache web server, provide web console connections. SSL can be added to the Apache web server for use over a firewall.


Bill Hassell, sysadmin
0 Kudos
Duncan Edmonstone
HPE Pro

‎07-27-2001 01:03 AM

‎07-27-2001 01:03 AM

Re: SWC - How can I go through a firewall?

Alternatively check out the following:

http://www.arula.com/ProductSecSSL.shtml

Looks familiar doesn't it!

I am an HPE Employee
Accept or Kudo
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.