General discussion

Locked

User Authentication to Firewall

By jbellusci ·
I have a 3COM superstack Firewall on my LAN and I'm looking for some software that I could maybe use to force User authentication to this firewall. The Firewall doesn't allow for this and there is no way to force it using only the firewall. I contacted 3COM on this issue and they said it's not possible with the Firewall alone, but that there might be some 3rd party software.

I need this to capture authenticated usernames for my monitoring software so we don't have to go by IP addresses.Does anyone know of any software that could help me?

thanks,

This conversation is currently closed to new comments.

5 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

User Authentication to Firewall

by erikdr In reply to User Authentication to Fi ...

I'm afraid that, as nothing can be added to the firewall (but 3Com-specific stuff - no market for that), you'd need to add authentication at different point in the stovepipe. E.g. add a proxy server (like iPlanet, Microsoft) and force all outbound firewall traffic to go thru this proxy. And, yes, authenticate the users and use this log to pinpoint the IP adresses in the firewall log.

However I guess if what you solely need is an IP - username mapping, you could as well use the logfiles of the Windows/NetWare/Unix logon and match THOSE with the fwall logs.
These too can be set to audit the IP adress and username with the logon...

Hope thiz helpz,

<Erik> - The Netherlands

Collapse -

User Authentication to Firewall

by jbellusci In reply to User Authentication to Fi ...

Thanks for your answer Erik, but we actually moved from a Proxy Server to this firewall so that we would be able to FTP and use Outlook Web Access Client. I don't want to put the Proxy back on the LAN as it often created more problems than solutions.

thanks again,

Jeremy

Collapse -

User Authentication to Firewall

by tex In reply to User Authentication to Fi ...

You've got two completely separate issues here it sounds like. The first is that you wish the firewall to challenge users with a password (AAA- Authentication, Authorization, and Accounting). This can be accomplished using alot of different products(some of them free). The first I would suggest is RSA SecurID and ACE server. If you configure your Superstack to issue authentication requests to a RADIUS server you specify the ACE server instead and it works the same except that you are more secure. The second method is to use a RADIUS server (which is free if you use Linux). You can keep a database on MySQL on the same box and use that for authentication or if you want to pay for a clicky version of RADIUS many companies sell a server/software. (for instructions on enabling AAA using RADIUS or SecurID look here - http://support.3com.com/software/fw/ss3firewall.pdf and the heading of Setting up RADIUS)

Now for the logging. First thing I would do is try to enable reverse DNS lookups on your hosts. I am unaware of your environment but I know active directory for MS and Linux is capable of taking reverse DNS feeds (if you set it up on the DNS server). If tis is too much for you you can buy a SNMP package like HP Openview that can take your Syslogs (from your firewall .. look in the same document as above to enable sysloging to a specific machine .. you can do this to any kind of server including on MS server .. event log) and send them from the Firewall to the HP Openview server that can then make a cool nice diagram of your network and make you happy (BTW again if you use Linux of FreeBSD you can use alot of free packages that do the same thing).

Regards,

Jim Cabe CCA, CCNP
Network Engineer
IPM Computer Systems

Collapse -

User Authentication to Firewall

by jbellusci In reply to User Authentication to Fi ...

Poster rated this answer

Collapse -

User Authentication to Firewall

by jbellusci In reply to User Authentication to Fi ...

This question was closed by the author

Back to Networks Forum
5 total posts (Page 1 of 1)  

Related Discussions

Related Forums