From: Jenny L. <bod...@li...> - 2010-11-22 20:05:53
|
> Jenny, while I can sense frustration here, it really seems as if the > scenario itself needs to be re-looked at. If there really is no other > way - it is truly impossible to change this server setup to something > more "regular" - then it may require insertion of custom software (e.g. > proxies) to make it happen. Yes, proxies seem to work. Tested squid. But client needs access to stuff squid does not support. What we are trying to do basically here is to hack into a bank which only allows access from a particular IP. Here is a diagram: http://cid-eae7200096eae915.photos.live.com/self.aspx/up/diag2.jpg I don't want to spam people with 200K image on the list. Just let me know if it does not work. Bank will only talk to SERVER-B. And client can only access SERVER-A. I am not a network person, but I don't think this should be that difficult. tun1 interface works fine between SERVER-A and B. So this all boils down to forwarding tun0 to tun1 and back on the same machine (SERVER-A). Firewall is off on both SERVER-A and B. Your diagram looks like a probability too. I mean, we don't mind packets forwarded to client from SERVER-B (but this would complicate matters a bit). Thanks for the help. PS: Joke |