Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Creating a VPN using Openserver 5.0.6
Operating Systems SCO Creating a VPN using Openserver 5.0.6 Post 302891809 by trolley on Saturday 8th of March 2014 11:07:36 AM
Old 03-08-2014
RE: Creating a VPN using OpenServer 5.0.6
Thank you for the tip, I will give it a try. I have a FIOS firewall and the ports for telnet and ftp are forwarded to my Unix server. Would VisionFs be better that that?
 

8 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

help with vpn

We have an older model DG Aviion Unix system and we're trying to switch to VPN but we can't talk to the Unix box... can't ping or telnet to it, but we can talk to all our other systems (PC/NT servers). Is there a network/tcpip setting we're missing? Something we have to change/set, either on... (0 Replies)
Discussion started by: markb
0 Replies

2. IP Networking

Vpn

Hi, I have two unix networks connected via VPN via IPsec. I am using snapgear vpn devices at each location. The two devices can ping one another, as well as the unix network behind the respected devices. The unix machines can ping their local vpn devices. However, I am having issues pinging... (1 Reply)
Discussion started by: l8kerboi23
1 Replies

3. UNIX for Advanced & Expert Users

VPN and then

Hi, I want to work on a remote unix server, then on a windows XP station I have a Forticlient that makes a VPN to the network on which the server is situated. But then I do not know how to work with. In DOS box (cmd BOX) I issue: telnet myserver but It does not know IT. Any idea ? Many thanks. (2 Replies)
Discussion started by: big123456
2 Replies

4. Shell Programming and Scripting

help needed with creating challenging bash script with creating directories

Hi, Can someone help me with creating a bash shell script. I need to create a script that gets a positive number n as an argument. The script must create n directories in the current directory with names like map_1, map_2 etcetera. Each directory must be contained within its predecessor. So... (7 Replies)
Discussion started by: I-1
7 Replies

5. UNIX for Advanced & Expert Users

advertisement in vpn

I am looking for a solution to add a web banner in all web page sessions when user is connected through pptp vpn connection. any solution? may be using squid or pptp servers? (1 Reply)
Discussion started by: vansari
1 Replies

6. IP Networking

VPN Connection

Hello, I have question about VPN connection thats, I have two networks 1-Office Network 2-Home Network both are connected to internet i have in Office network PPTP VPN Server with real or static ip and on the home network all clients working with local ip Now , I need to connect to... (3 Replies)
Discussion started by: LinuxCommandos
3 Replies

7. Homework & Coursework Questions

Creating a .profile, displaying system variables, and creating an alias

Use and complete the template provided. The entire template must be completed. If you don't, your post may be deleted! 1. The problem statement, all variables and given/known data: Here is what I am supposed to do, word for word from my assignment page: 1. Create/modify and print a... (2 Replies)
Discussion started by: Jagst3r21
2 Replies

8. Solaris

Vpn

Hi. Yesterday I installed Solaris 11.3 and I tried to setup a VPN but I didn't find how to make it. I saw the "network manager" where I found the ethernet connection but I didn't find where to add a VPN connection. When I used Debian Linux there was NetworkManagerVPN that with a GUI I... (0 Replies)
Discussion started by: Jena
0 Replies

LEARN ABOUT OPENSOLARIS

krb5_auth_rules

krb5_auth_rules(5)					Standards, Environments, and Macros					krb5_auth_rules(5)

NAME

       krb5_auth_rules - overview of Kerberos V5 authorization

DESCRIPTION

       When  kerberized  versions of the ftp, rdist, rcp, rlogin, rsh, telnet, or ssh clients are used to connect to a server, the identity of the
       originating user must be authenticated to the Kerberos V5 authentication system. Account access	can  then  be  authorized  if  appropriate
       entries	exist in the ~/.k5login file, the gsscred table, or if the default GSS/Kerberos authentication rules successfully map the Kerberos
       principal name to Unix login name.

       To avoid security problems, the ~/.k5login file must be owned by the remote user on the server the client is attempting to access. The file
       should contain a private authorization list comprised of Kerberos principal names of the form principal/instance@realm. The /instance vari-
       able  is  optional  in  Kerberos   principal   names.   For   example,	different   principal	names	such   as   jdb@ENG.ACME.COM   and
       jdb/happy.eng.acme.com@ENG.ACME.COM  would  each  be legal, though not equivalent, Kerberos principals. The client is granted access if the
       ~/.k5login file is located in the login directory of the remote user account and if the originating user can be authenticated to one of the
       principals named in the file. See gkadmin(1M) and kadm5.acl(4) for more information on Kerberos principal names.

       When no ~/.k5login file is found in the remote user's login account, the Kerberos V5 principal name associated with the originating user is
       checked against the gsscred table. If a gsscred table exists and the principal name is matched in the table, access is granted if the  Unix
       user  ID listed in the table corresponds to the user account the client is attempting to access. If the Unix user ID does not match, access
       is denied. See gsscred(1M).

       For example, an originating user listed in the gsscred table with the principal name jdb@ENG.ACME.COM and the uid 23154 is  granted  access
       to the jdb-user account if 23154 is also the uid of jdb-user listed in the user account database. See passwd(4).

       Finally, if there is no ~/.k5login file and the Kerberos V5 identity of the originating user is not in the gsscred table, or if the gsscred
       table does not exist, the client is granted access to the account under the following conditions (default GSS/Kerberos auth rules):

	   o	  The user part of the authenticated principal name is the same as the Unix account name specified by the client.

	   o	  The realm part of the client and server are the same, unless the krb5.conf(4) auth_to_local_realm parameter is  used	to  create
		  equivalence.

	   o	  The Unix account name exists on the server.

       For example, if the originating user has the principal name jdb@ENG.ACME.COM and if the server is in realm SALES.ACME.COM, the client would
       be denied access even if jdb is a valid account name on the server. This is because the realms SALES.ACME.COM and ENG.ACME.COM differ.

       The krb5.conf(4) auth_to_local_realm parameter also affects authorization. Non-default realms can be equated with  the  default	realm  for
       authenticated name-to-local name mapping.

FILES

       ~/.k5login     Per user-account authorization file.

       /etc/passwd    System account file. This information may also be in a directory service. See passwd(4).

ATTRIBUTES

       See attributes(5) for a description of the following attributes:

       +-----------------------------+-----------------------------+
       |      ATTRIBUTE TYPE	     |	    ATTRIBUTE VALUE	   |
       +-----------------------------+-----------------------------+
       |Interface Stability	     |Evolving			   |
       +-----------------------------+-----------------------------+

SEE ALSO

       ftp(1),	rcp(1),  rdist(1),  rlogin(1),	rsh(1), telnet(1), gkadmin(1M), gsscred(1M), kadm5.acl(4), krb5.conf(4), passwd(4), attributes(5),
       gss_auth_rules(5)

SunOS 5.11							    07 Apr 2006 						krb5_auth_rules(5)
All times are GMT -4. The time now is 03:52 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy