Re: {bb} Multiple BBNET servers

To: bb@bb4.com
Subject: Re: {bb} Multiple BBNET servers
From: Philip Clark <bblist@cannae.uklinux.net>
Date: 14 Jan 2006 22:25:53 +0000
Content-transfer-encoding: 7bit
Content-type: text/plain
In-reply-to: <43C95D8C.5030808@umdnj.edu>
References: <43C95D8C.5030808@umdnj.edu>
Reply-to: bb@bb4.com
Sender: owner-bb@bb4.com

On Sat, 2006-01-14 at 20:22, Ryan Novosielski wrote:
> How does one handle the following situation?:
> 
> One cannot ping across the firewall in my organization. DMZ machines can 
> ping other DMZ machines and non-DMZ machines can ping other non-DMZ 
> machines. My future BB machine will be multi-homed. However, there is 
> probably a way to handle this with two different machines. However, what 
> is it? bb-hosts is supposed to be the same on both hosts, and I only 
> want there to be one display.
> 
> How is it done?

The usual solution is (as your subject line suggests) to install
the server software on a DMZ machine and run it as a BBNET only.
The "rule" that bb-hosts should be the same everywhere is really
an administration guideline and should continue "unless you have
a good reason not to". This is one of those good reasons.

On your internal BB server, bb-hosts will have the "noconn"
directive (and probably only that directive) for each of your
DMZ hosts. For the DMZ BB server, you should have an entry for
each DMZ host that you want to test and one for the (internal)
BBDISPLAY. That line should also have the "noconn" directive.

In order for this method to work, the firewall will need to
be configured to allow incoming connections between the
two hosts on port 1984. Ultra-paranoid security people (and
they're really the only ones worth having) may refuse to
even consider that. If so, you might have to test from the
internal network instead and use a TCP equivalent to ping.
In that case, this might be helpful:

  http://www.deadcat.net/viewfile.php?fileid=699

Cheers, Phil.

-- 
I have the world's largest collection of seashells.  I keep it
scattered around the beaches of the world ... Perhaps you've seen
it. (Steven Wright)

--
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=-=-=-=-=-=-=-=-=
To unsubscribe from this list, or to subscribe to the bb-digest list
send e-mail to mailto:majordomo@bb4.com with unsubscribe bb -and/or-
subscribe bb-digest in the BODY of the message.

Follow-Ups:
- Re: {bb} Multiple BBNET servers
  - From: Ryan Novosielski <novosirj@umdnj.edu>

References:
- {bb} Multiple BBNET servers
  - From: Ryan Novosielski <novosirj@umdnj.edu>

Prev by Date: Re: {bb} solaris temperatures
Next by Date: Re: {bb} Multiple BBNET servers
Previous by thread: Re: {bb} Multiple BBNET servers
Next by thread: Re: {bb} Multiple BBNET servers
Index(es):
- Date
- Thread

Home | Main Index | Thread Index