I have a problem at a site here I am hoping someone can help me with.
I have an open proxy (external connects to the proxy from unprivileged public addresses are serviced by the proxy) which I have repeatedly tried to shut down by filtering:
This is a novell 5.1 machine with border manager 3.5 and
proxy auth cannot be used.
rulesets:
With filtcfg
src interface = public
dest interface = public
src address = any
dst address = public: 80
denied
with acls
allow src internal dest pub:80
allow src internal 2 dest pub :80
deny src any dest pub:80
Neither seem to have any effect. I have tried filtering ingress and egress at the sites router as well
The transparent proxy redirector listens at each
interface port 80. At worst I would like to turn this
off for the public interface.
The box is nat enabled and services multiple privately addressed hosts internally so disabling the proxy entirely is not desirable.I can't find a thing at Novell on this.
TIA
I have an open proxy (external connects to the proxy from unprivileged public addresses are serviced by the proxy) which I have repeatedly tried to shut down by filtering:
This is a novell 5.1 machine with border manager 3.5 and
proxy auth cannot be used.
rulesets:
With filtcfg
src interface = public
dest interface = public
src address = any
dst address = public: 80
denied
with acls
allow src internal dest pub:80
allow src internal 2 dest pub :80
deny src any dest pub:80
Neither seem to have any effect. I have tried filtering ingress and egress at the sites router as well
The transparent proxy redirector listens at each
interface port 80. At worst I would like to turn this
off for the public interface.
The box is nat enabled and services multiple privately addressed hosts internally so disabling the proxy entirely is not desirable.I can't find a thing at Novell on this.
TIA