|
Sounds like you have 3 routers on your physical network (at least). Each of those has one of the address you named for next hop on the route. Once a route is defined, all things being equal, someone can get to wherever that goes (the subnet on the other side of the router) This could be done with filtering in each router, but this seems ugly. You can stop all traffic from a certain subnet, or selected addresses (or rnages) from a subnet. I hope there's a better way. I think there's some kind of port restriction on the 400, but I don't think it helps this. But take a look, it's one of the options on GO CFGTCP. HTH Vern At 04:15 AM 11/19/02 -0800, you wrote:
-- [ Picked text/plain from multipart/alternative ] Hi All, I'm facing a typical situation. I have a iseries server with a single ethernet card, configured for 3 network addresses. one internal & two extenal ip's( all with seperate route, subnet mask). The surprising thing is the user who's configured to the local network (does not have any access to the external ip's) connects to the iseries server. And....from here he can do a telnet/ftp to any server that is attached to the external network(internet). Can anyone comment how is it possible for the local user connected to the iseries to gets access to the internet?? How to restrict the local user from accessing the external network (internet) when connected to the iseries having a external ip configured?? TIA.
As an Amazon Associate we earn from qualifying purchases.
This mailing list archive is Copyright 1997-2025 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.
midrange.com
