Differences
This shows you the differences between two versions of the page.
| Next revision | Previous revision | ||
|
public:firewalls [2014/05/13 11:25] 127.0.0.1 external edit |
public:firewalls [2021/05/04 17:15] (current) Simon Haller-Seeber |
||
|---|---|---|---|
| Line 1: | Line 1: | ||
| + | ==== UIBK Firewalls ==== | ||
| + | |||
| There are several firewalls in the UIBK network all operated by the ZID: | There are several firewalls in the UIBK network all operated by the ZID: | ||
| - | This is just a summary, for more info see the ZID Homepage (http://www.uibk.ac.at/zid/security/) | + | This is just a summary, for more info see the ZID Homepage [[http://www.uibk.ac.at/zid/security/|IT-Sicherheit an der Universität Innsbruck]] |
| + | |||
| + | === Border-Firewall === | ||
| One to rule them all –> Protects the UIBK network from the outside. Servers have to be announced to the ZID so that they can allow connections from the outside to it. Information about it can be found here: http://www.uibk.ac.at/zid/security/borderfirewall.html . | One to rule them all –> Protects the UIBK network from the outside. Servers have to be announced to the ZID so that they can allow connections from the outside to it. Information about it can be found here: http://www.uibk.ac.at/zid/security/borderfirewall.html . | ||
| - | This firewall can be avoided by connecting (ssh) to the zid-gpl.uibk.ac.at server or by using a vpn connection (info –> vpn.uibk.ac.at). | + | This firewall can be avoided by connecting (ssh) to the zid-gpl.uibk.ac.at server or by using a vpn connection (info –> vpn.uibk.ac.at).\\ |
| To register a new server use the following website: https://orawww.uibk.ac.at/apex/prod/f?p=20110505:1 | To register a new server use the following website: https://orawww.uibk.ac.at/apex/prod/f?p=20110505:1 | ||
| - | And then there are firewalls between any vlan. These firewalls can be circumvented by authenticating to this site: fwauth.uibk.ac.at . This site is only availabe from the UIBK address. After authentication connections from the same IP Address are allowed. The browser has to be open for the duration of the connection. | + | === Department Firewalls === |
| + | And then there are firewalls between any vlan. These firewalls can be circumvented by authenticating to this site: fwauth-tech.uibk.ac.at . This site is only availabe from the UIBK address. After authentication connections from the same IP Address are allowed. The browser has to be open for the duration of the connection. | ||
| + | |||
| + | Example use-case: Access your Office-PC from Home: | ||
| + | - Open VPN (see: https://ifi-wiki.intra.uibk.ac.at/public/vpn and https://www.uibk.ac.at/zid/netz-komm/vpn/) | ||
| + | - Authenticate against https://fwauth-tech.uibk.ac.at (**Note:** you need a c703 [[cnumber]] - otherwise you wont get access to the department [[:knowledgebase:vlans|vlan]]) | ||
| + | - Connect to your Office-PC | ||
| + | |||
Last modified: 2014/10/16 17:15 (external edit)