Right now I'll just document quickly firewall changes that need to happen for a new host to be able to access the KVM.
The KVM is on VLAN7 and as such resides in Zone 5. It already has an entry in the address book on the NetScreens. New scspc's are typically in Zone 4.
Right now, the easiest way to accomplish this is to create a new address book entry for the PC you want to have access, then add a policy in the "From Zone 4 to Zone 5" list allowing VNC through to dbkvm1. Later, we might want to create address book entries for each PC, and then add them to a group, with the group being granted access instead.
Or perhaps just allow the world to VNC to the KVM, and use the KVM's internal firewall / access policies to restrict access.
-- MikePatterson - 14 Mar 2006
Topic revision: r1 - 2006-03-14 - MikePatterson
Information in this area is meant for use by CSCF staff and is not official documentation, but anybody who is interested is welcome to use it if they find it useful.
- CF Web
- CF Web Home
- Changes
- Index
- Search
- Administration
- Communication
- Hardware
- HelpDeskGuide
- Infrastructure
- InternalProjects
- Linux
- MachineNotes
- Macintosh
- Management
- Networking
- Printing
- Research
- Security
- Software
- Solaris
- StaffStuff
- TaskGroups
- TermGoals
- Teaching
- UserSupport
- Vendors
- Windows
- XHier
- Other Webs
- My links
 |
|
Copyright © 2008-2025 by the contributing authors. All material on this collaboration platform is the property of the contributing authors. Ideas, requests, problems regarding TWiki? Send feedback