[BALU] Determining log-on rights/permissions on SuSE 11.3

Larry Owen larry at hackofalltrades.com
Fri Apr 15 09:56:38 CDT 2011


Charles Tharp <chuck.tharp at gmail.com> wrote:



you can ssh(putty)  into the server / sql server    and login already 
from an outside source  comand line.  yes

isn't the address 10.0.0.25  not routable * and therfore would need 
something like a  bridge router to make the external connection

*   http://www.sprout.org/site_media/ramona/nat_3com.pdf
( I know i shoud  cite a more offical  reference
but this  was  an easy read  read.)

But something still does not feel right Larry are you assuming a port forward 
from the branch office.

Charles Tharp
---------------------





On Fri, Apr 15, 2011 at 8:28 AM, Larry Owen <larry at hackofalltrades.com> wrote:

We'll need just a little more info about the addresses to answer it
correctly.  But I'm going to assume that '###.###.N.###' is the same as
'X.Y.N.###'.  So if the main office has addresses like 10.0.0.25 and the
branch has 10.0.1.25, they will be able to communicate if their subnet
mask is 255.255.0.0.

This also assumes that there is not a physical barrier like a firewall.


On 04/15/2011 07:14 AM, Andrew Edson wrote:
> I'm sorry, if that's what you picked up, I must have misphrased my
> original request.
> I'm not looking for information on the PostgreSQL setup; I'm trying to
> figure out how to ensure that the users can connect to the actual Server
> Box itself - somewhat of a requirement for being able to use anything on
> it. Given that they're coming from what I believe (if I understand the
> terms correctly*) is a different subnet, how do I make sure that users
> (or, in this case, client-side programs) on that subnet can access the
> box on the 'main' subnet?
> *And if I'm not correct on this, would someone please be kind and point
> me in the direction of the proper terminology?
>
>     ----- Original Message -----

>     *From:* Walker Haddock <mailto:whaddock at mac.com>
>     *To:* BALU Linux/Free Software Discussion
>     <mailto:members at lists.bham-lug.org>
>     *Sent:* Thursday, April 14, 2011 5:11 PM
>     *Subject:* Re: [BALU] Determining log-on rights/permissions on SuSE 11.3
>
>     Andrew,
>
>     I understand your question to be:
>     How do I change the network address that users are allowed to
>     connect to the PostgreSQL database from?
>
>     The PostgreSQL database uses the pg_hba.conf file to authorize
>     network (and local) connections to the database. You have 5 types of
>     authentication methods to select, the database, the user and the
>     host address (or network).
>
>     After modifying the pg_hba.conf file, you can issue a "pg_ctl
>     reload" (as documented in the pg_hba.conf file) as a database superuser.
>
>     Walker
>
>     On Apr 14, 2011, at 4:10 PM, Andrew Edson wrote:
>
>>     I've recently been informed that the official location for one of
>>     the servers we maintain will be picking up a branch location.
>>     (Offices have an internal pattern of '###.###.N.###' for their IP
>>     combos; the new branch has a different value of N from the main
>>     office.) I've been requested to verify that the systems from the
>>     branch site will be able to log into the main office's server. I
>>     know how to check and verify the login IP values for the mysql
>>     database, and I'm fairly confident I can figure out what I'll need
>>     to permit the postgres system to accept the new branches, but
>>     where do I need to look and reset in order to ensure that the
>>     systems can actually log into the server itself?
>>     _______________________________________________
>>     Members mailing list

>>     Members at lists.bham-lug.org <mailto:Members at lists.bham-lug.org>

>>     http://lists.bham-lug.org/cgi-bin/mailman/listinfo/members
>
>     ------------------------------------------------------------------------
>
>     _______________________________________________
>     Members mailing list
>     Members at lists.bham-lug.org
>     http://lists.bham-lug.org/cgi-bin/mailman/listinfo/members
>
>
>
> _______________________________________________
> Members mailing list
> Members at lists.bham-lug.org
> http://lists.bham-lug.org/cgi-bin/mailman/listinfo/members

_______________________________________________
Members mailing list
Members at lists.bham-lug.org
http://lists.bham-lug.org/cgi-bin/mailman/listinfo/members



Actually, i was it was all private. That was my comment about physical barriers like firewalls. 

Which also brings up my other statement about needing more information. 
-- 
Sent from my Android phone with K-9 Mail.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://bham-lug.org/pipermail/members/attachments/20110415/3e48c364/attachment.html>


More information about the Members mailing list