Apologies in advance for any operational content this may contain. I have a customer who wants to get a static ip with his dialup. He uses SSH extensively and plans to do X11 forwarding, and if he gets disconnected and redials and gets another IP the previous sessions would be inaccessible. I can do static IP but I want to try to save the guy a couple bucks. :) Would a static IP be required to make sure he doesn't lose those X11 sessions after a disconnect? Asking here because I figure my chances of getting an accurate answer are better here than on any of the other mailing lists I read. TIA. SJS -- Steve Sobol, Proud Native of the Great Frozen City of Cleveland, Ohio http://www.Cleveland.OH.US/ http://www.TravelCleveland.com/ http://www.LakeCountyOhio.org/ (Where the Snow is Cold but our Hearts Aren't!) CTO, JustThe.net LLC, Mentor On The Lake, Lake County, OH http://JustThe.net/
On Wed, 20 Mar 2002 11:50:22 -0500, Steve Sobol wrote:
Apologies in advance for any operational content this may contain.
I have a customer who wants to get a static ip with his dialup. He uses SSH extensively and plans to do X11 forwarding, and if he gets disconnected and redials and gets another IP the previous sessions would be inaccessible.
I can do static IP but I want to try to save the guy a couple bucks. :)
Would a static IP be required to make sure he doesn't lose those X11 sessions after a disconnect?
No. He just has to be able to request a 'preferred' IP and be granted it if it's available. DHCP can do this. On his end, he must request his last IP as his 'preferred' IP. On your end, you must give a client the IP they request if it's available. If you want to be really slick, you will 'reserve' an IP for 2 minutes after it's released and only allow it to be reissued (within those two minutes) to the same user. This protects all your dialup users from session hijacking and gives them some of the benefits of a static IP while still allowing you to overcommit IP addresses.
Asking here because I figure my chances of getting an accurate answer are better here than on any of the other mailing lists I read.
DS
On Wed, Mar 20, 2002 at 11:50:22AM -0500, Steve Sobol wrote:
I have a customer who wants to get a static ip with his dialup. He uses SSH extensively and plans to do X11 forwarding, and if he gets disconnected and redials and gets another IP the previous sessions would be inaccessible.
I can do static IP but I want to try to save the guy a couple bucks. :)
Would a static IP be required to make sure he doesn't lose those X11 sessions after a disconnect?
Asking here because I figure my chances of getting an accurate answer are better here than on any of the other mailing lists I read.
His best bet would be to use vnc - http://www.uk.research.att.com/vnc/ or one of its variants. Failing that, a pptp connection using RFC1918 addresses for the two endpoints could do the trick, but I'm not sure how X would deal with the icmp host unreachable messages that would be received when the pptp session goes down (would probably kill them). It should also be noted that vanilla vnc is not encrypted (but can be forwarded over an ssh connection or ssl'ized or <insert your favourite method here>). -- Bob <melange@yip.org> | It's pretty good, if you don't think about it.
On Thu, 21 Mar 2002, Bob K wrote:
It should also be noted that vanilla vnc is not encrypted (but can be forwarded over an ssh connection or ssl'ized or <insert your favourite method here>).
Password authentication is enrcypted, but the remainder of the session is not. -- Avleen Vig Network Security Officer Smurf Amplifier Finding Executive: http://www.ircnetops.org/smurf
participants (4)
-
Avleen Vig -
Bob K -
David Schwartz -
Steve Sobol