Can I do this with a firewall? nat with Password!

Can I do this with a firewall? nat with Password!
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Networking Firewalls    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
Can I do this with a firewall? nat with Password! Adrian 09-17-2006
Posted by Adrian on September 17, 2006, 5:04 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Hi

We have a URL and access to it is controlled by source IP
address, as many of our users increasingly have dynamic IP address we are
looking for a quick solution without changing the current system which is
hosted off site.



The solution I'm thinking of is to register a new URL point it's "A" record
at firewall, set the firewall rules to check the user by prompting for
username / password, then set the it to forward everything back out to the
net by using Nat and on to the
original URL where a connection will be allowed as we will add the new
firewall's public
IP address to the access list.


It is essential that the traffic flow is kept via the firewall and the we
present the firewalls source IP address to the end system not the users.


So setting aside any concerns about how secure either system will be, would
this approach work? and examples?






Posted by Walter Roberson on September 17, 2006, 6:40 pm
If you were  Registered and logged in, you could reply and use other advanced thread options

> We have a URL and access to it is controlled by source IP
>address, as many of our users increasingly have dynamic IP address we are
>looking for a quick solution without changing the current system which is
>hosted off site.

Your existing system very likely already has a username / password
mechanism available. Any reputable hosting company would support it.

You should decide, though, on what level of security is appropriate
for the username and password combinations. Unless the name and
password is just intended to be a small deterent, then you probably
don't want them going out "in the clear". Standard firewall
authentication for http URLs uses plaintext, so you'd probably be
wanting to switch to https. You may wish to consider leaving your
home page as http but have a link or a redirection to https .

Similar ThreadsPosted
Outpost firewall password security ! May 25, 2006, 12:27 pm
Question about Outpost firewall security password ! May 30, 2006, 7:01 pm
firewall symantec 320 security gateway password recover February 1, 2007, 1:23 pm
re: password December 7, 2007, 2:47 pm
VPN IAS Netscreen and password changes April 6, 2005, 12:03 am
Re: splash screen and a password please. August 8, 2008, 3:48 pm
Re: THE HOST - ebook.rar - WTF is the password?? December 1, 2008, 12:37 pm
Check Point SmartCenter Password December 12, 2005, 8:27 am
Password-based challenge-response December 26, 2006, 7:34 pm
hotmail password request tool (intranet usage) April 18, 2005, 5:11 am

The site map in XML format XML site map

Contact Us | Privacy Policy