AF:
NF:0
PS:10
SRH:1
SFN:
DSR:
MID:<20090519085939.00e7e5c9@ripper.onstor.net>
CFG:
PT:0
S:andy.sharp@onstor.com
RQ:
SSV:mail.onstor.net
NSV:
SSH:
R:<richard.lareau@onstor.com>,<dl-LeopardCoreTeam@onstor.com>
MAID:1
X-Sylpheed-Privacy-System:
X-Sylpheed-Sign:0
SCF:#mh/Mailbox/sent
RMID:#imap/andys@onstor.net@exch1.onstor.net/INBOX	0	102AB4F33EBBDB4C91915B145C8E9FB312972FB815@exch1.onstor.net
X-Sylpheed-End-Special-Headers: 1
Date: Tue, 19 May 2009 08:59:50 -0700
From: Andrew Sharp <andy.sharp@onstor.com>
To: Rich LaReau <richard.lareau@onstor.com>
Cc: dl-Leopard Core Team <dl-LeopardCoreTeam@onstor.com>
Subject: Re: ECR request for Leopard
Message-ID: <20090519085950.795a8cc7@ripper.onstor.net>
In-Reply-To: <102AB4F33EBBDB4C91915B145C8E9FB312972FB815@exch1.onstor.net>
References: <102AB4F33EBBDB4C91915B145C8E9FB312972FB815@exch1.onstor.net>
Organization: Onstor
X-Mailer: Sylpheed-Claws 2.6.0 (GTK+ 2.8.20; x86_64-pc-linux-gnu)
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit

I hear the request, but the correct way to handle this is to use a
VPN.  Having said that, I'm aware that many proprietary VPN solutions
are too slow for the speed adicted among us.  Hence I would recommend
using an ssh tunnel and a web proxy (squid) on the inside of the
network.  There are many howto web sites on how to set up this sort of
thing.  I use exactly such a setup here at Onstor.

Cheers,

a


On Tue, 19 May 2009 08:41:13 -0700 Rich LaReau
<richard.lareau@onstor.com> wrote:

> Default port for Leopard GUI.
> 
> ________________________________
> From: Mark Tyson
> Sent: Tuesday, May 19, 2009 7:42 AM
> To: Rich LaReau
> Cc: Michael Tracy (Glasshouse)
> Subject: ECR request for Leopard
> 
> Morning Rich,
> 
> We have the Leopard system running now and I have numerous questions
> about it (I'll wait for the training to ask them). The issue that I
> would like to bring to your attention is access to the Web UI through
> a Firewall. We are not able to access the Web UI from outside our
> office. When trying to connect, after some time, we get the message
> "page cannot be displayed". We are able to ssh to the box and the Web
> UI works from inside the office and from different networks within
> the office. In an effort to troubleshoot, I installed IIS on a
> windows 2003 server. I set a website to use port 2000. We had the
> same issue, remote users could not access it through our firewall. We
> took some traces and found numerous malformed packets. I found that
> if I changed the IIS web site to any other port (1999, 2001, etc) we
> could connect without issue. After further investigation we found
> that Port 2000 is used for Cisco's skinny protocol (VOIP). We are
> using a Cisco firewall here and inspection of skinny protocol packets
> is enabled by default. We believe this to be the culprit. Since we
> use VOIP, our network people do not want to disable to see if it
> resolves the issue for fears that it might impact our phones. I have
> looked everywhere and cannot find a place on the Leopard to change
> the port for the Web UI. Is there a way to change it? As Cisco is
> fairly prevalent worldwide, might I suggest using a different default
> port for Web UI or adding the ability to change the port that it
> uses. The only option I can think of is to setup some port forwarding
> policies on the firewall.
> 
> Thanks,
> Mark
> 
