[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] RE: [FW1] Xwindows through VPN
Title: Xwindows through VPN With
x, the client-server concept is reversed.The securemote client becomes the X
server. So, the server behind your firewall is INITIATING connection to
securemote client. To allow this, create a rule as follow : source "your X
clients (servers)" destination "any" service: create a new service
(services, create new, other) and in match, add this line
"tcp,dport>=6000,dport<=6063,<dst,0> in userc_rules" and action
accept . Put that rule after your client encrypt rules.
This
will allow the firewall to encrypt the packets back to securemote connections.
(the in userc_rules verifies that the destination has a securemote connection
open with the firewall)
Patrick Desnoyers
|