[AusNOG] Firewall authentication from Telstra 3G connections
Damien Gardner Jnr
rendrag at rendrag.net
Fri Jun 15 13:35:32 EST 2012
On 15/06/2012 12:51 PM, James Sutherland wrote:
>
> Hi Ausnog,
>
> In the past couple of weeks we have started seeing issues with
> customers connecting to firewall-authentication-protected servers via
> Telstra 3G. From any other connection you browse to the gateway, enter
> username and password, and the firewall temporarily opens the required
> ports just for the IP you connected from. Recently though, from
> Telstra 3G connections, it seems that http traffic to the
> authentication page is sourced from a different IP to FTP, SSH etc
> traffic so the cached authenticated IP doesn't match the traffic's
> source IP and is dropped. This has been confirmed with several
> different firewalls and customers. Has anyone else seen this or could
> shed some light on it?
>
>
Isn't that standard behaviour with any ISP with a (forced) proxy? All
HTTP requests come from the proxy IP, all other traffic comes from the
end user's IP?
--DG
--
Damien Gardner Jnr
VK2TDG. Dip EE. GradIEAust
rendrag at rendrag.net - http://www.rendrag.net/
--
We rode on the winds of the rising storm,
We ran to the sounds of thunder.
We danced among the lightning bolts,
and tore the world asunder
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20120615/4f987047/attachment.html>
More information about the AusNOG
mailing list