Re: AW: Barnyard newbie questions.

["Tom Arseneault" <TArseneault () counterpane com>]

> Message: 1
> Date: Thu, 10 Jun 2004 09:47:50 -0400
> From: "Shaun T. Erickson" <ste () smxy org>
> Reply-To: ste () smxy org
> To: "Maetzky, Steffen (Extern)" <Steffen.Maetzky () gedas de>
> Cc: 'Lance Boon' <lboon () firststatebanksw com>,
>       snort-users () lists sourceforge net
> Subject: Re: AW: [Snort-users] Barnyard newbie questions.
>
> Maetzky, Steffen (Extern) wrote:
> > Google for "Tunneling MySQL Over SSH", this article should help.
>
> This is not going to be a workable solution for me, as the sensor is
in my DMZ and the acid server is on my LAN > > and nothing is allowed to
ssh from the DMZ to the LAN.
> Is there now way to just have barnyard securely connect to mysql, on
it's own?
>       -ste

What you may want to try is you ssh from your Acid server on your LAN to
your sensor on your DMZ and create a remote tunnel, if your not familiar
with the differences between a local and remote tunnel the web has some
good examples, that way you originate the ssh tunnel from inside but you
can still get a tunnel from outside to you DB. You want to take care
that only local host can forward over the tunnel of course (I think it's
the default on modern SSH products).



Thomas J. Arseneault 
Security Engineer
Counterpane Internet Security
tarseneault () counterpane com


-------------------------------------------------------
This SF.Net email is sponsored by the new InstallShield X.
> From Windows to Linux, servers to mobile, InstallShield X is the
one installation-authoring solution that does it all. Learn more and
evaluate today! http://www.installshield.com/Dev2Dev/0504
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users