Re: [Fedora-directory-users] FDS behind NATed firewall

2007-01-11 Thread Nathaniel Hall
[EMAIL PROTECTED] wrote: >> I have a master directory server behind a firewall that uses NAT. I >> want to place a read only server behind a different firewall. The new >> >> server does have a public IP address. Here is my setup: >> >> Master <--> Firewall (NAT) <--> Internet <--> Firewal

RE: [Fedora-directory-users] FDS behind NATed firewall

2007-01-11 Thread bernhard . waldvogel
> I have a master directory server behind a firewall that uses NAT. I > want to place a read only server behind a different firewall. The new > server does have a public IP address. Here is my setup: > > Master <--> Firewall (NAT) <--> Internet <--> Firewall <--> Read-Only Question, wath abo

Re: [Fedora-directory-users] FDS behind NATed firewall

2007-01-10 Thread David Boreham
One thing to watch when using software tunnels is that there was (is still?) a bug in the ldap protocol library underneath the server where if packets are fragmented in strange and unnatural ways, the server just won't work properly (it fails to decode the LDAP PDU header properly). This happen

Re: [Fedora-directory-users] FDS behind NATed firewall

2007-01-10 Thread Nathaniel Hall
I have been trying to do this for a couple of days. It worked at one point, but it was replicating in plaintext. Alternatively, what I am trying is to point the read only system to the master through SSH tunnels and setup replication through the standard SSL port. I had a very similar setup yest

Re: [Fedora-directory-users] FDS behind NATed firewall

2007-01-10 Thread Eddie C
I have never gotten this suggestion to work but I did not try it much. You can use Point to Point IP Sec tunneling. This will remove the SSH layer. it will be more natural in terms of IP resolution and more standard then making tunnels. Edward On 1/10/07, Patrick Morris <[EMAIL PROTECTED]> wrot

Re: [Fedora-directory-users] FDS behind NATed firewall

2007-01-10 Thread Patrick Morris
On Wed, 10 Jan 2007, Nathaniel Hall wrote: > I have a master directory server behind a firewall that uses NAT. I > want to place a read only server behind a different firewall. The new > server does have a public IP address. Here is my setup: > > Master <--> Firewall (NAT) <--> Internet <--> F

[Fedora-directory-users] FDS behind NATed firewall

2007-01-10 Thread Nathaniel Hall
I have a master directory server behind a firewall that uses NAT. I want to place a read only server behind a different firewall. The new server does have a public IP address. Here is my setup: Master <--> Firewall (NAT) <--> Internet <--> Firewall <--> Read-Only My initial thought was to writ