Menu
▾
▴
Re: [Devil-Linux-discuss] Devil-linux-discuss Digest, Vol 11, Issue 1
|
From: <ne...@co...> - 2007-04-05 19:19:41
|
Heiko, thank you for your quick reply. > What do you mean exactly with swapping sessions? >I'm currently failing to understand where the DL box comes into play >(except for the firewalling). Swapping sessions: Each user logs into the telnet-based app. When they log in, they get specific menu options based on their logon. When one handheld "steals" a session, someone can power up a scanner and be logged in as someone else--or be logged in as someone else who might have been in the middle of an inventory transaction. A good example of this might be where one person was adding to an outbound shipment at the same time someone else was receiving product. Without warning the receiver's scanner was using the shipper's session. That really messes up the transactions and can take a while to solve. The DL box: This is how we are controlling the access to the network. When we put the DL box in, the dozen or so clients connecting to the telnet server all seem to be coming from the same IP (the DL box). Before the DL box, each of the scanners had their own IP that could be seen by the telnet server. This means that it could restore a session if there was a disruption in our T1. Basically I'm looking for suggestions on how to keep the DL box in use without (or at least minimizing) the problems with the telnet clients. The DL box has prevented a number of people from hopping onto our wireless network and I'd like to keep it. -joseph > > Message: 9 > Date: Thu, 05 Apr 2007 18:49:45 +0000 > From: ne...@co... > Subject: [Devil-Linux-discuss] Telnet clients swapping sessions > To: dev...@li... > Message-ID: > > <040...@co...> > > > Good Day everyone, > > I've set up a DL (1.2) server that controls wireless access to our LAN. It runs > on a via c3 system. > > The only purpose for the wireless is to allow handheld barcode scanners (less > than a dozen embedded DOS telnet clients) to connect to one of our servers. We > set the firewall rules to only allow for specific telnet traffic and dhcp > requests. > > All went fairly well for a couple of weeks. Then we noticed that the embedded > clients were swapping/stealing sessions. Sometimes it would happen when there > was a glitch in our T1 etc... > > Lately, things have gotten worse. The handheld scanners are doing this several > times a day. When one is powered on, for example, it sometimes steals the > session from another handheld. This is a problem as users have different > permissions in the inventory software. > > If at all possible, the clients need to DHCP, and we need to keep the access as > tight as is possible. Just going through the logs, I can see a dozen or two > foiled attempts to hop onto our network. > > > I'll gladly provide more info since I don't know what info would help. > > > > > ------------------------------ > > Message: 10 > Date: Thu, 5 Apr 2007 14:01:25 -0500 (CDT) > From: "Heiko Zuerker" <he...@zu...> > Subject: Re: [Devil-Linux-discuss] Telnet clients swapping sessions > To: dev...@li... > Message-ID: > <295...@ga...> > Content-Type: text/plain;charset=iso-8859-1 > > > On Thu, April 5, 2007 13:49, ne...@co... wrote: > > Good Day everyone, > > > > > > I've set up a DL (1.2) server that controls wireless access to our LAN. > > It runs on a via c3 system. > > > > > > The only purpose for the wireless is to allow handheld barcode scanners > > (less than a dozen embedded DOS telnet clients) to connect to one of our > > servers. We set the firewall rules to only allow for specific telnet > > traffic and dhcp requests. > > > > All went fairly well for a couple of weeks. Then we noticed that the > > embedded clients were swapping/stealing sessions. Sometimes it would > > happen when there was a glitch in our T1 etc... > > > > Lately, things have gotten worse. The handheld scanners are doing this > > several times a day. When one is powered on, for example, it sometimes > > steals the session from another handheld. This is a problem as users > > have different permissions in the inventory software. > > > > If at all possible, the clients need to DHCP, and we need to keep the > > access as tight as is possible. Just going through the logs, I can see a > > dozen or two foiled attempts to hop onto our network. > > > > > > I'll gladly provide more info since I don't know what info would help. > > What do you mean exactly with swapping sessions? > I'm currently failing to understand where the DL box comes into play > (except for the firewalling). > > -- > > Regards > Heiko Zuerker > http://www.devil-linux.org > > > > > |
