• Subject: RE: Internet security and the AS/400
  • From: Bleddyn Williams <bleddyn@xxxxxxxxxxxxxxx>
  • Date: Wed, 7 Jan 1998 15:39:10 -0000
  • Organization: Morpheus Limited

First things once you start letting people through any firewall do tasks on 
the AS/400 you are opening up the security of the firewall to outside 
attack. Also if your home users are dialing in then most ISP's work on 
random IP addresses there are only a few here in the UK who don't. This 
means you wouldn't be able to allow a single mapped address through.

You could look at a firewall that supports VPN (Virtual Private Network) 
technology so you have a secure client that talks to the firewall and 
establishes a secure tunnel. As an option have a look at the Guardian 
Firewall.

On the AS/400 turn of all services you do not need to have running such as 
Telnet and FTP until you get round to using them. And if you are looking at 
webserving and mail consider putting in a model 150 or server box to handle 
this which can talk to your live box via SNA.

Thanks Bleddyn

http://www.morpheus.ltd.uk - everything for an AS/400 eBusiness Solution
http://www.morpheus.ltd.uk/html/mail_list.htm - the mailing list for AS400 
eBusiness
Tel 0044 (0)1344 891621 -------   Fax 0044 (0) 1344891620

-----Original Message-----
From:   Jack Mullins [SMTP:jmullins@sundash.com]
Sent:   07 January 1998 13:34
To:     MIDRANGE-L@midrange.com
Subject:        Internet security and the AS/400

Hello Everybody,

I know there has been some discussion of this in the past.  However, I 
would
appreciate it if I could trouble you again with a few questions.

I am setting up a dedicated connection to the internet at my office via
ISDN.  I'm going to route the internet connection directly onto my ethernet
so that everyone on the ethernet will have access to the internet. 
 However,
I want to protect my AS/400 which is also connected to the ethernet.  Also,
I am planning to eventually use the AS/400 as an e-mail server and possibly
HTML server in the future.  I am presently considering buying a fiewall to
protect the entire ethernet.  What other considerations do I need to
entertain and will a firewall be enough?  How safe will it be to allow
telnet/ftp access to my home users (the only users will probably be MIS for
now)?

I could use suggestions on firewall brands too.  What kind of experiences
have you had, good or bad?

Thank you,


Jack Mullins
Sun Industries, Inc.
2409 Industrial Dr.
Jonesboro, AR 72401
http://www.sundash.com


+---
| This is the Midrange System Mailing List!
| To submit a new message, send your mail to "MIDRANGE-L@midrange.com".
| To unsubscribe from this list send email to 
MIDRANGE-L-UNSUB@midrange.com.
| Questions should be directed to the list owner/operator: 
david@midrange.com
+---
uucp

+---
| This is the Midrange System Mailing List!
| To submit a new message, send your mail to "MIDRANGE-L@midrange.com".
| To unsubscribe from this list send email to MIDRANGE-L-UNSUB@midrange.com.
| Questions should be directed to the list owner/operator: david@midrange.com
+---


This thread ...


Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2019 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].