Re: Remote access to your rack

From: Scott Smith (hioctane@gmail.com)
Date: Sun Aug 20 2006 - 11:09:53 ART

• Next message: Tim: "MPLS newbie w/ a couple basic Q's"
• Previous message: csica: "RE: frame-relay fragment & exclude voice pakkets from being"
• Maybe in reply to: Scott Thornton: "Remote access to your rack"
• Next in thread: William Walla: "Re: Remote access to your rack"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

First, I use dymanic DNS so I connect to my home network without
knowing the IP. The IP address for my cable changes so this solved
that issue. Second, I also have an APC9211 for remote power up (a must
have!).

I have two different ways to access my rack.

1) Secure way: So called poor man's VPN. Use SSH to connect to a linux
box on my home network. Putty allows tunneling/forwarding so the ports
I need (23 and 2001-2016) are redirected from the local PC to the
linux box. For example, after connecting I can telnet to 127.0.0.1
2001 to connect to R1. Doing it this way is secure and the only port
open on the firewall is 22.

2) Not-so-secure way: Open port 23 and 2001-2016 on the firewall and
use lock-and-key to authenticate to the term server. After I'm
authenticated I can then telnet to domain.com 2001 to connect to R1.

I nearly always use option 1. Option 2 is really just there if I need
to give access to someone else who doesnt have SSH access. Unless I
have a need to give someone access these ports are always closed on
the firewall.

-Scott

On 8/19/06, Scott Thornton <scthornton@gmail.com> wrote:
> Can anyone provide me with a recommendation on how to access my rack of
> network equipment remotely? Is anyone else doing this, if so, what works
> well?
>
> Thanks!
>
> --
> Scott C Thornton
>
> Notice: This e-mail (including attachments) is covered by the Electronic
> Communications Privacy Act, 18 U.S.C. 2510-2521, is confidential and may be
> legally privileged. If you are not the intended recipient, you are hereby
> notified that any retention, dissemination, distribution, or copying of this
> communication is strictly prohibited. Please reply to the sender that you
> have received the message in error, then delete it. Thank you.
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html

• Next message: Tim: "MPLS newbie w/ a couple basic Q's"
• Previous message: csica: "RE: frame-relay fragment & exclude voice pakkets from being"
• Maybe in reply to: Scott Thornton: "Remote access to your rack"
• Next in thread: William Walla: "Re: Remote access to your rack"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Fri Sep 01 2006 - 15:41:57 ART