Telnet Proxy Service With Proxy User Authentication

The following information is used in this example:

Proxy user name

pu1

Authorized user name

au1

Authorized user password

au1_pw

Backend user name

bu1

Backend Telnet server name

telnet_server

SunScreen proxy name

sunscreen_fw

Client machine name

tiny

To Set Up the SunScreen Environment

1. Type the following to make sure the backend Telnet Server is accessible:

   # ping -s telnet_server

2. Add an entry in the /etc/hosts file if it is accessible. For example:

   1.2.3.4 telnet_server

To Configure the Telnet Proxy Service

1. Create an authorized user:

   1. In the Common Objects section, select Authorized User from the Type list.

   2. Select New from the Add New list.

      The Authorized User dialog box appears.

   3. Type a name for this authorized user in the Name field, for example:

      au1

   4. Select the User Enabled check box.

   5. Type the password:

      au1_pw

   6. Select the Enabled check box after the Password field.

   7. Retype the password:

      au1_pw

   8. Click the OK button.

2. Create the Proxy User:

   1. In the Common Objects section, select Proxy User from the Type list.

   2. Select New from the Add New list.

      The Proxy User dialog box appears.

   3. Type a name for this Proxy User in the Name field, for example:

      pu1

   4. Select the User Enabled check box.

   5. Type the following in the Authorized User Name field:

      au1

   6. Type a name in the Backend User Name field, for example:

      bu1

   7. Click the OK button.

3. Create a Policy Rule:

   1. Click the Add New button in the Policy Rules area of the Policy Rules page.

      The Rule Definition dialog box appears.

   2. Select the following values for each field:

      Service

      telnet

      Source Address

      *

      Destination Address

      *

      Action

      ALLOW

      PROXY list

      PROXY_TELNET

   3. Click the OK button.

4. Save the changes:

   1. Click the Verify Policy button.

   2. Click the Save Changes button.

5. Test the Telnet Proxy Service

   From the client machine:

   1. Make sure the physical connections are good.

   2. Make sure the client machine can access the SunScreen proxy:

      ping -s sunscreen_fw

   3. Test the Telnet proxy service:

      Command issued	telnet sunscreen_fw
      Username	pu1@telnet_server
      Password	au1's password, for example, au1-pw. (Password is not seen because it is echo suppressed.)

      tiny# telnet sunscreen_fw Trying 70.70.70.1... Connected to sunscreen_fw. Escape character is "^]". SunScreen Telnet Proxy Version 3.2 Username@Hostname: pu1@telnet_server Password: au1_pw Trying telnet_server (1.2.3.4) ... Connected to telnet_server SunOS 5.6 login: bu1 Password: au1_pw