[AusNOG] Firewall authentication from Telstra 3G connections
Chris Jones
chrisj at aprole.com
Fri Jun 15 13:40:06 EST 2012
Used to see this all the time with TPG/Internode ADSL connections back in the day.
Moving the firewall auth to https should let you work around it
Regards,
Chris
On 15/06/2012, at 1:35 PM, Damien Gardner Jnr wrote:
>
> On 15/06/2012 12:51 PM, James Sutherland wrote:
>>
>> Hi Ausnog,
>>
>> In the past couple of weeks we have started seeing issues with customers connecting to firewall-authentication-protected servers via Telstra 3G. From any other connection you browse to the gateway, enter username and password, and the firewall temporarily opens the required ports just for the IP you connected from. Recently though, from Telstra 3G connections, it seems that http traffic to the authentication page is sourced from a different IP to FTP, SSH etc traffic so the cached authenticated IP doesn’t match the traffic’s source IP and is dropped. This has been confirmed with several different firewalls and customers. Has anyone else seen this or could shed some light on it?
>>
> Isn't that standard behaviour with any ISP with a (forced) proxy? All HTTP requests come from the proxy IP, all other traffic comes from the end user's IP?
>
> --DG
>
> --
> Damien Gardner Jnr
> VK2TDG. Dip EE. GradIEAust
> rendrag at rendrag.net - http://www.rendrag.net/
> --
> We rode on the winds of the rising storm,
> We ran to the sounds of thunder.
> We danced among the lightning bolts,
> and tore the world asunder
> _______________________________________________
> AusNOG mailing list
> AusNOG at lists.ausnog.net
> http://lists.ausnog.net/mailman/listinfo/ausnog
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20120615/c243ed1e/attachment.html>
More information about the AusNOG
mailing list