In my case, the firewall doesn't allow any port 23 traffic from the
external adapter on the firewall so that all of the "inside" IP
addresses can access the i on port 23 but if someone tries to hit the
external address at port 23, it isn't forwarded to the i. The firewall
should handle the external access so there really isn't anything you
need to do on the i (unless the Ethernet adapter is external as well).
I haven't used a DMZ so I can't speak to that. I have a MS ISA server
between the outside world and the i.
Value Added Software, Inc
On 8/24/2010 7:13 PM, Trevor Perry wrote:
I have a customer who has turned off port 23 and only uses SSL. We have a
requirement where we must use port 23 for unsecured telnet. How can I ensure
that opening port 23 does not expose telnet beyond their DMZ/firewall?