IDENT Reverse Proxy

The IDENT protocol is used by remote servers for a simple verification of the identity of accessing clients. Although this protocol is unencrypted and can easily be spoofed, many services still use (and sometimes require) the IDENT protocol.

To configure the IDENT relay, proceed as follows:

  1. On the IDENT Reverse Proxy tab, enable the IDENT relay.

    Click the toggle switch.

    The toggle switch turns green and the Global Settings area becomes editable.

  2. Make the following settings:

    Forward to internal hosts (optional): Since IDENT queries are not covered by the gateway's connection tracking, they will get "stuck" if masquerading is used. You can select the Forward to Internal Hosts option to pass on IDENT queries to masqueraded hosts behind the gateway. Note that the actual IP connection will not be forwarded. Instead, the gateway will in turn ask the internal client for an IDENT reply and will forward that string to the requesting server. This scheme will work with most "mini-IDENT" servers built into popular IRC and FTP clients.

    Default response: The gateway offers support for answering IDENT requests when you enable the IDENT relay. The system will always reply with the string entered in the Default response box, regardless of the local service that has initiated the connection.

  3. Click Apply.

    Your settings will be saved.