Date: Wed, 17 Jul 2002 15:28:54 +0200 From: "Carroll, D. (Danny)" <Danny.Carroll@mail.ing.nl> To: "Sabri Berisha" <sabri@cluecentral.net>, "Bart Matthaei" <bart@dreamflow.nl> Cc: <security@freebsd.org> Subject: RE: ipfw and it's glory... Message-ID: <6C506EA550443D44A061432F1E92EA4C6C5364@ing.com>
next in thread | raw e-mail | index | archive | help
:How about DNS? You send out a query from an high udp port to a dns :server's port 53. It will send you an udp packet to that high port. But it's source port will be 53. So you can put in a rule for that. Plus it's only 1 or 2 servers so you can put in special rules for them. :> Natd on a firewall ? Firewalling a public network ? I don't think so :> :) : :Nothing wrong with that. In fact, you might even want to consider using :natd only if you don't use the box for another purpose. yup. -----------------------------------------------------------------=0A= ATTENTION:=0A= The information in this electronic mail message is private and=0A= confidential, and only intended for the addressee. Should you=0A= receive this message by mistake, you are hereby notified that=0A= any disclosure, reproduction, distribution or use of this=0A= message is strictly prohibited. Please inform the sender by=0A= reply transmission and delete the message without copying or=0A= opening it.=0A= =0A= Messages and attachments are scanned for all viruses known.=0A= If this message contains password-protected attachments, the=0A= files have NOT been scanned for viruses by the ING mail domain.=0A= Always scan attachments before opening them.=0A= ----------------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6C506EA550443D44A061432F1E92EA4C6C5364>