Hello list friends,

There have been threads lately on this issue, but I'm afraid I've missed the
most important ones...
Today I was asked about the possibilty of connecting our 3000 system to the
Internet AND preserve the security, i.e. not letting customers accessing the
system from the net to get access to our internal network.  We are running
MPE iX/5.5 (PP4) with Telnet and FTP enabled.

The setup is: An Extranet server (IIS) in ISP's premises and protected by a
firewall will handle customer access to several applications running inhouse
on different plattforms. One application is our legacy system running on
HP3000, which probably will be accessed through an OPAL application running
on the WEB-server.

There have been suggestions that if we installed an extra network interface
in the 3000, we could possibly isolate the external traffic from the
internal by assigning different network addresses to the two interfaces. I
am not aware of any way to do this, but if someone out there has any ideas
or suggestions, they will be appreciated.


Tom Tollefsen
Sys. Mgr.

Creditreform Norge AS
P.O. Box 194
N-1324 LYSAKER

Norway