|
|
|
|
|
|
|
|
 |
 |
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] AW: [FW1] x11
Hello ! Have you solved this problem ??? There must be a way (I tried it with a PIX and it worked )!! The fault is the UDP Packet on Port177 where the X server and the X client initiate the session. Arno > -----Ursprungliche Nachricht----- > Von: [email protected] > [mailto:[email protected]]Im Auftrag von > John Shin > Gesendet: Montag, 20. Dezember 1999 23:39 > An: Rajeev Kumar; [email protected] > Betreff: Re: [FW1] x11 > > > > Thanks, I already have a rule. Instead of telneting from client A to > client B, then firing up a x session, he sends a request > through UDP177 and > then the server responds back with x session. > > John > > At 05:21 PM 12/20/1999 -0500, Rajeev Kumar wrote: > >X11 service works in a reverse way. Suppose session is: > > > >ClientA -> telnet to -> ClientB > > > >At ClientB (he sets setenv DISPLAY ClientA:0.0) > >and fired x application. Now X-Client is (ClientB) and X-server is > >(ClientA). (so client > >server concept is opposite here). With this fact you have to > diagnose the > >situation. So > >there must be some rule which allows X-traffic from ClientB > -> ClientA in > >your FW rule. > > > >Rajeev > > > >John Shin wrote: > > > > > > I have a client who is trying to use x11. I don't know > exactly how it > > > works, but my understanding is that when client contacts > the server, the > > > initial connection is dropped and the server will open a > new connection to > > > the client between tcp 6000-6063. Teh client is > statically NAT'ed and when > > > we tested with a client that is not NAT'ed, it works > fine, but with NAT'ed > > > host, we never see the server responding with x11 ports > when we snooped > > > interfaces. Other services, like telnet, etc. works just > fine between the > > > 2 hosts. I am inclined to say that the server is the > problem, but wanted > > > to check with you guys first. Any ideas? > > > TIA > > > > > > John > > > > > > > > > ============================================================== > ============ > > ====== > > > To unsubscribe from this mailing list, please see > the instructions at > > > http://www.checkpoint.com/services/mailing.html > > > > > > ============================================================== > ============ > > ====== > > > >-- > >############################################################# > ############ > > (Titanic creators used Linux to simulate the sinking of > the great ship) > >############################################################# > ############ > > Rajeev Kumar ([email protected]) > > Fluent Inc. 10, Cavendish Court, Lebanon NH-03766 > >------------------------------------------------------------- > ------------ > >Phone ::x 349 Fax ::> > Web:: http://www.fluent.com > >############################################################# > ############ > > > > > ============================================================== > ================== > To unsubscribe from this mailing list, please see the > instructions at > http://www.checkpoint.com/services/mailing.html > ============================================================== > ================== > ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|
||||||||||
 |
 |
 |
 |
 |
 |
 |
 |
 |
|
