The following information is used in this example:
Proxy User name: pu1
Authorized User name: au1
Authorized User password: hello
Backend user name: BkEndUsrName
Backend Telnet server name: BackendServer
SunScreen for Solaris Version 3.1 Proxy server name: qa22-efs-hem1
Client machine name: tiny
Type the following to make sure the backend Telnet Server is accessible:
ping -s BackendServer |
Add an entry in the /etc/hosts file, if it is accessible. For example:
1.2.3.4 BackendServer |
Create a new Service for the Telnet proxy service:
Log in to the administration GUI.
On the Policies List page, select the policy and click the Edit... button.
The Policy Rules page appears.
In the Common Objects section, select Service from the Type choice list.
Click New Single... from the Add New choice list.
The Service dialog window appears.
Type the name for this new service in the Name field, for example:
proxy_telnet |
Click the Add Filter button and select tcp.
Click the field under Port, and type 23.
Click the OK button.
Create an Authorized User:
In the Common Objects section, select Authorized User from the Type choice list.
Select New... from the Add New choice list.
The Authorized User dialog window appears.
Type a name for this Authorized User in the Name field, for example:
au1 |
Click the User Enabled check-box.
Type the password:
hello |
Click the Enabled check-box after Password: field.
Retype the password:
hello |
Click the OK button.
Create the Proxy User:
In the Common Objects section, select Proxy User from the Type choice list.
Select New... from the Add New choice list.
The Proxy User dialog window appears.
Type a name for this Proxy User in the Name field, for example:
pu1 |
Click the User Enabled check-box.
Type the following in the Authorized User Name field:
au1 |
Type a name in the Backend User Name field, for example:
BkEndUsrName |
Click the OK button.
Create a Policy Rule:
Click the Add New... button in the Policy Rules area of the Policy Rules page.
The Rule Definition dialog window appears.
Edit each field as follows by clicking the down arrow to display the choice list.
Service: proxy_telnet
Source Address: *
Destination Address: *
Action: ALLOW
PROXY list: PROXY_TELNET.
Click the OK button.
Save the changes:
Test the Telnet Proxy Service
From the Client Machine:
Make sure the physical connections are good.
Make sure the client machine can access the SunScreen Proxy Server:
ping -s qa22-efs-hme1 |
Test the Telnet proxy service:
Command issued: telnet qa22-efs-hme1
Username: pu1@BackendServer
Password: au1"s password For example, hello. (Password is not seen because it is echo suppressed.)
tiny# telnet qa22-efs-hme1 Trying 70.70.70.1... Connected to qa22-efs-hme1. Escape character is "^]". SunScreen Telnet Proxy Version 3.0 Username@Hostname: pu1@BackendServer Password: <enter au1"s password> Trying BackendServer (1.2.3.4) ... Connected to BackendServer SunOS 5.6 login: BkEndUsrName Password: |