[AusNOG] Firewall authentication from Telstra 3G connections
Mark Andrews
marka at isc.org
Mon Jun 18 12:56:50 EST 2012
In message <4FDE982E.2070902 at vapourforge.com>, Jake Anderson writes:
> On 15/06/12 13:43, Scott Howard wrote:
> > On Thu, Jun 14, 2012 at 8:35 PM, Damien Gardner Jnr
> > <rendrag at rendrag.net <mailto:rendrag at rendrag.net>> wrote:
> >
> > Isn't that standard behaviour with any ISP with a (forced) proxy?
> > All HTTP requests come from the proxy IP, all other traffic comes
> > from the end user's IP?
> >
> >
> > Not at all. Any ISP doing a transparent proxy should be doing "IP
> > Spoofing" so that the connection still appears to come from the client
> > IP address. That's not to say that they all do, but...
> >
> > That said, I would hope that the "authentication" is occurring over
> > HTTPS, and there's no reason any ISP should be running a transparent
> > proxy for SSL traffic.
> >
> > Scott
>
> Last time i looked my clients were getting private address ranges (10.*)
> using telstra business internet.
> Which was fine until it overlapped the private range their office was
> using and broke the VPN.
http://tools.ietf.org/html/rfc6598
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: marka at isc.org
More information about the AusNOG
mailing list