Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: AIX SFTP through MS ISA proxy
Operating Systems AIX AIX SFTP through MS ISA proxy Post 302466314 by rbatte1 on Tuesday 26th of October 2010 06:37:52 AM
Old 10-26-2010
Data AIX SFTP through MS ISA proxy
Dear all,

I have some files to move to an SFTP server that someone else is providing on the public internet. The source for the file is on AIX, and although I have the sftp client installed, I'm stuck. The process would be automated (probably ksh script or perhaps as a C executable) so there would not be an option for interactive input.

There is no direct route to the internet for the AIX server, but firewall rules have apparently been altered so that it can talk to the pair of MS ISA servers Smilie that we use for desktop PC access to the internet. There are two so that a desktop makes the request to proxy A and if authenticated this is passed on to proxy B which is public facing. Proxy B will only accept traffic from proxy A.

My problem is how I would craft an SFTP request to open a connection directed via proxy A & how I would authenticate. The desktop PCs has client software installed to handle that function.

By the way, I don't have a choice on having to use an MS ISA server. That's what we have. Full stop. Smilie

I have looked at curl (see curl 'dot' haxx 'dot' se) but haven't yet spotted how this can be acheived.

An option would be to PGP encrypt the files and try plain FTP, but I would need the provider to agree and I would still need to use the proxy.


I've only been doing this job 15 years, but I have to admit I am stumped.Smilie


Thanks, in advance,
Robin
 

9 More Discussions You Might Find Interesting

1. Cybersecurity

microsoft isa server

Just installed Linux on my box at work and i'm not sure how to connect to isa server, that is used here - any help would be appreciated (3 Replies)
Discussion started by: kareivis
3 Replies

2. AIX

[Q] secureftp (sftp) on AIX 4.3.3

Hi, all I am using non-secure ftp on AIX 4.3.3. But, I am facing IT audit, have to install secureftp on AIX 4.3.3 ftp server. Most fo all, I have no experience secureftp. sftp is equl to ssh ? I am searching "sftp, secureftp" but it was difficult to find binary code to install, but... (1 Reply)
Discussion started by: wolfhyun
1 Replies

3. AIX

SFTP on AIX 5.2.2

Hello, On my test host I've installed the SSH soft. Created the Public & Private key for sftp and all works fine. Now I want to modify my scheduled scripts, that runs in batch mode, to work automatically. How can I bypass the Passphrase request when I start my sftp connection. I modified the... (1 Reply)
Discussion started by: Fima62
1 Replies

4. UNIX for Dummies Questions & Answers

isa serial port adapter card no longer detectedworking

hi all, i've got an old PC with unix (SCO System V/386 rel. 3.2) on it. Pentium I; 128mb; ISA 2-port RS232 serial adapter card for an oki dot-matrix printer. (no usb, no CD) i've been running an old cobol program to do some invoicing and print reports. some time back i changed the... (0 Replies)
Discussion started by: frankpky
0 Replies

5. IP Networking

Software/tool to route an IP packet to proxy server and capture the Proxy reply as an

Hi, I am involved in a project on Debian. One of my requirement is to route an IP packet in my application to a proxy server and receive the reply from the proxy server as an IP packet. My application handles data at the IP frame level. My application creates an IP packet(with all the necessary... (0 Replies)
Discussion started by: Rajesh_BK
0 Replies

6. Linux

SFTP an internet address from a system behind an internet proxy

I was wondering if it is possible to setup SFTP to go through the internet proxy while connecting to an internet location. Problem: Client system is behind internet proxy. SFTP to any internet location fails as there is no documented way to configure SFTP to connect to internet locations through... (4 Replies)
Discussion started by: toobrown1
4 Replies

7. Solaris

Connessione con client SFTP via Proxy

Ciao a tutti, ho l'esigenza di collegarmi in SFTP (client Winscp) ad una macchina solaris che vedo attraverso un'altra macchina solaris. Come configuro la connessione ? Sulla macchina diretta non ho problemi mentre sulla remota non so come configurare i parametri per utilizzare la diretta come... (1 Reply)
Discussion started by: bobbyred
1 Replies

8. UNIX and Linux Applications

Proxy Server and SFTP routing

Hi Friends, I am trying to connect to remote server via proxy server and transfer files from my server . the proxy server is windows. I wanted to know is that is it possible? I am using command to connect is /usr/local/bin/sftp -o "ProxyCommand nc proxyserver.com 8080"(E-Mail... (6 Replies)
Discussion started by: mallayanala
6 Replies

9. Proxy Server

Httpd proxy on AIX: failed to connect SSL

Hi, I am trying to migrate a quite old proxy server with Apache httpd, running on AIX The scenario is that my server accepts connections on http and proxies them to an SSL backend. This is done in a ProxyPass statement, as follows: ProxyPass /myservice/my-ws... (1 Reply)
Discussion started by: trifo75
1 Replies

LEARN ABOUT FREEBSD

tftp-proxy

TFTP-PROXY(8)						    BSD System Manager's Manual 					     TFTP-PROXY(8)

NAME

     tftp-proxy -- Internet Trivial File Transfer Protocol proxy

SYNOPSIS

     tftp-proxy [-v] [-w transwait]

DESCRIPTION

     tftp-proxy is a proxy for the Internet Trivial File Transfer Protocol invoked by the inetd(8) internet server.  TFTP connections should be
     redirected to the proxy using the pf(4) rdr command, after which the proxy connects to the server on behalf of the client.

     The proxy establishes a pf(4) rdr rule using the anchor facility to rewrite packets between the client and the server.  Once the rule is
     established, tftp-proxy forwards the initial request from the client to the server to begin the transfer.	After transwait seconds, the pf(4)
     NAT state is assumed to have been established and the rdr rule is deleted and the program exits.  Once the transfer between the client and
     the server is completed, the NAT state will naturally expire.

     Assuming the TFTP command request is from $client to $server, the proxy connected to the server using the $proxy source address, and $port is
     negotiated, tftp-proxy adds the following rule to the anchor:

	   rdr proto udp from $server to $proxy port $port -> $client

     The options are as follows:

     -v      Log the connection and request information to syslogd(8).

     -w transwait
	     Number of seconds to wait for the data transmission to begin before removing the pf(4) rdr rule.  The default is 2 seconds.

CONFIGURATION

     To make use of the proxy, pf.conf(5) needs the following rules.  The anchors are mandatory.  Adjust the rules as needed for your configura-
     tion.

     In the NAT section:

	   nat on $ext_if from $int_if -> ($ext_if:0)

	   no nat on $ext_if to port tftp

	   rdr-anchor "tftp-proxy/*"
	   rdr on $int_if proto udp from $lan to any port tftp -> 
	       127.0.0.1 port 6969

     In the filter section, an anchor must be added to hold the pass rules:

	   anchor "tftp-proxy/*"

     inetd(8) must be configured to spawn the proxy on the port that packets are being forwarded to by pf(4).  An example inetd.conf(5) entry fol-
     lows:

	   127.0.0.1:6969  dgram   udp	   wait    root 
		   /usr/libexec/tftp-proxy tftp-proxy

SEE ALSO

     tftp(1), pf(4), pf.conf(5), ftp-proxy(8), inetd(8), syslogd(8), tftpd(8)

CAVEATS

     tftp-proxy chroots to /var/empty and changes to user ``proxy'' to drop privileges.

BSD
								 November 28, 2005							       BSD
All times are GMT -4. The time now is 01:55 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy