Path: utzoo!utgpu!jarvis.csri.toronto.edu!mailrus!purdue!haven!ncifcrf!nlm-mcs!powsner
From: powsner@nlm-mcs.arpa (Seth M Powsner)
Newsgroups: comp.protocols.appletalk
Subject: FastPath - NetBridge Incompatibility
Keywords: tcp-ip kip gateway nbp privacy security problem
Message-ID: <11285@nlm-mcs.arpa>
Date: 3 Feb 90 15:28:30 GMT
Reply-To: powsner.medinf@yccatsmtp.ycc.yale.edu (Seth M Powsner)
Organization: Yale Univ Sch of Medicine
Lines: 16

Sorry if this repeats my prior attempt to post (appeared unsuccessful)--
The Kinetics FastPath 4 running K-Star V7 uses name binding protocol requests
to confirm a node's continuing use of a dynamically assigned IP address. This
is blocked by Shiva NetBridge's privacy option which attempts to hide a
private AppleTalk subnet request. It never passes name requests so the public
side never "sees" anything. The TCP-IP session can be started, but after 2.5
minutes the FastPath assumes it stopped (no name requests returned). Static
address sessions don't even get this far because a name request is used to
"firm-up" the TCP-IP session initialization. Kinetics and Shiva are aware of
this. No fixes. Cayman tech support says the GatorBox would act similarly.

Can anyone suggest alternative hardware/software? We'd like to keep our
office AppleTalk net out of sight (over and above password protection on
our TOPS file servers). Alternatively, anyone know of monitoring/alarm
software to let us know that someone's attempting to crack the password
on the file server?