http://block.weizmann.ac.il:900
Users who wish to get through the firewall in order to gain access to the Weizmann communications network, must authenticate themselves to the firewall machine. There are two ways to do this: via a web browser or via a telnet session.
Users outside the firewall who wish to establish a connection to inside the firewall can do so by authenticating themselves to block, the firewall machine. To do this, you must have a SecurID card.
Point your web browser to
http://block.weizmann.ac.il:900
You should make sure that your browser is configured for direct connection to the Internet in the proxy preferences window. Do not use any proxy or you will not be properly authorized. (If you are working from a location where you are being forced to use a proxy, authenticate yourself via a telnet session and not via a web browser.)
After connecting, you will get a screen with a Login prompt. Enter your userid and press Submit. If you get the message
FireWall1 message: ERROR: Unable to proceed.
It is possible that the timeout has expired.
To relogin, press this button:
press the Relogin button.
You will get a screen asking you for your PASSCODE and password. Enter your PIN followed by the tokencode currently displaying on your SecurID card and press the Authentication button.
You will get the following screen:
Select a method then press submit:
Client Authentication Remote Service
FireWall1 message: User xyuser authenticated by SecurID
Methods:
Standard Sign-on
Sign-off
Specific Sign-on
If you are working in wireless mode, choose Standard Sign-on and press Submit. That is all you need to do.
If you are not working in wireless mode, choose Specific Sign-on and press Submit. You will then get a screen where you can fill in the service you want and the host to which you want to connect to perform that service. (Examples of hosts are any of the Weizmann computers e.g. www1, kesem.) After you fill in the information, press the Submit button on the bottom of the screen. If all goes well, you have now established a secure connection to the host you specified for the service you requested.
If the host you specify is not recognized, try putting in the IP address of the machine instead of it's name. The Unix Group (x-4225) can help you find the IP address.
When you are finished working, you can close the connection by going through the same procedure and choosing Sign-off. A secure connection that has been opened and remains idle for more than 15 minutes will be automatically closed. You will have to re-establish the connection in order to continue working.