[RC5-PROXYPER] Proxy->Proxy->KeyServer Question

vlad vlad at afn.org
Mon May 11 19:01:18 EDT 1998


Has anyone successfully connected from one proxy to another proxy to a key
server?  I need to run clients behind a firewall through one proxy.  The
security policy frowns on all the machines merrily chatting through.  So I
need to do:

Clients->Proxy->FW->Proxy->KeyServer.  

Am I out of luck, or can this be done?  I tried it the other day and kept
getting the same three lines over and over, about server 4 being added to
slot 1 on the ip address of my FW's public ethernet address.

Background.  Internal clients use the http proxy mode to talk through a FW
proxy (w.x.y.z:80) to my outside personal-proxy listening at a.b.c.d:8000.
This works fine.  If I set up an internal proxy and tell it to talk to the
outside personal-proxy in the same way, it fails.

>From the internal personal-proxy machine:

[05/11/98 12:31:05 GMT] Bovine RC5 Personal Proxy for UNIX (Build 277)
[05/11/98 12:31:05 GMT] For details, see http://rc5.distributed.net/
[05/11/98 12:31:05 GMT] 32 max connections
[05/11/98 12:31:05 GMT] ready=0/10, done=0 for rc5
[05/11/98 12:31:05 GMT] ready=0/10, done=0 for desII
[05/11/98 12:31:05 GMT] Listener added to ip 0.0.0.0 port 8000
[05/11/98 12:31:05 GMT] rc564 r=0/10, d=0/10, des r=0/10, d=0/10
[05/11/98 12:31:05 GMT] 0d 0:00:00, 0.0 rc5 Mkeys/sec 0.0 des Mkeys/sec
[05/11/98 12:31:05 GMT] Status: Slot 0 LISTENING
[05/11/98 12:31:05 GMT] Server 4 added to slot 1 ip w.x.y.z port 80
[05/11/98 12:31:05 GMT] Main proxy serving loop has begun
[05/11/98 12:31:06 GMT] The proxy says: [pp] outside proxy
[05/11/98 12:31:06 GMT] Closing HTTP connection for server w.x.y.z
[05/11/98 12:31:06 GMT] Server 4 added to slot 1 ip w.x.y.z port 80
[05/11/98 12:31:06 GMT] The proxy says: [pp] outside proxy
[05/11/98 12:31:06 GMT] Closing HTTP connection for server w.x.y.z
[05/11/98 12:31:06 GMT] Server 4 added to slot 1 ip w.x.y.z port 80
[05/11/98 12:31:06 GMT] The proxy says: [pp] outside proxy
[05/11/98 12:31:06 GMT] Closing HTTP connection for server w.x.y.z

The final three lines repeat on and on.


And from the external personal-proxy's log file:

[05/11/98 12:20:07 GMT] Bovine RC5 Personal Proxy for UNIX (Build 277)
[05/11/98 12:20:07 GMT] For details, see http://rc5.distributed.net/
[05/11/98 12:20:07 GMT] 32 max connections
[05/11/98 12:20:07 GMT] Proxy detaching from controlling terminal...
[05/11/98 12:20:07 GMT] whooooooooosh! and i've dissappeared ;)
[05/11/98 12:20:07 GMT] ready=3023/3000, done=2 for rc5
[05/11/98 12:20:07 GMT] ready=0/10, done=0 for desII
[05/11/98 12:20:07 GMT] Listener added to ip 0.0.0.0 port 8000
[05/11/98 12:20:07 GMT] rc564 r=3023/3000, d=2/10, des r=0/10, d=0/10
[05/11/98 12:20:07 GMT] 0d 0:00:00, 0.0 rc5 Mkeys/sec 0.0 des Mkeys/sec
[05/11/98 12:20:07 GMT] Status: Slot 0 LISTENING
[05/11/98 12:20:07 GMT] Main proxy serving loop has begun
[05/11/98 12:20:23 GMT] rc564 r=3023/3000, d=2/10, des r=0/10, d=0/10
[05/11/98 12:20:23 GMT] 0d 0:00:16, 0.0 rc5 Mkeys/sec 0.0 des Mkeys/sec
[05/11/98 12:20:23 GMT] Status: Slot 0 LISTENING
[05/11/98 12:20:38 GMT] rc564 r=3023/3000, d=2/10, des r=0/10, d=0/10
[05/11/98 12:20:38 GMT] 0d 0:00:31, 0.0 rc5 Mkeys/sec 0.0 des Mkeys/sec
[05/11/98 12:20:38 GMT] Status: Slot 0 LISTENING
[05/11/98 12:20:54 GMT] rc564 r=3023/3000, d=2/10, des r=0/10, d=0/10
[05/11/98 12:20:54 GMT] 0d 0:00:47, 0.0 rc5 Mkeys/sec 0.0 des Mkeys/sec
[05/11/98 12:20:54 GMT] Status: Slot 0 LISTENING
[05/11/98 12:21:05 GMT] w.x.y.z: Client requesting communication
[05/11/98 12:21:05 GMT] w.x.y.z: Client requesting communication
[05/11/98 12:21:06 GMT] w.x.y.z: Client requesting communication

The outside personal-proxy is seing the relayed internal personal-proxy
request via my FW's proxy (w.x.y.z), but something doesn't sync up and no
blocks are transferred.  I'm configuring the inside personal-proxy to talk
to the outside personal-proxy via network mode 5 -- setting up an HTTP
communication to a port on the outside personal-proxy -- just like my
current client configurations which work.

Any suggestions?


---
vlad at afn.org   O-
"Buy a rifle, encrypt your data, and join the revolution"

--
To unsubscribe, send 'unsubscribe proxyper' to majordomo at lists.distributed.net



More information about the proxyper mailing list