Date: Wed, 17 Jul 2002 15:28:54 +0200 From: "Carroll, D. (Danny)" <Danny.Carroll@mail.ing.nl> To: "Sabri Berisha" <sabri@cluecentral.net>, "Bart Matthaei" <bart@dreamflow.nl> Cc: <security@freebsd.org> Subject: RE: ipfw and it's glory... Message-ID: <6C506EA550443D44A061432F1E92EA4C6C5364@ing.com>
index | next in thread | raw e-mail
:How about DNS? You send out a query from an high udp port to a dns :server's port 53. It will send you an udp packet to that high port. But it's source port will be 53. So you can put in a rule for that. Plus it's only 1 or 2 servers so you can put in special rules for them. :> Natd on a firewall ? Firewalling a public network ? I don't think so :> :) : :Nothing wrong with that. In fact, you might even want to consider using :natd only if you don't use the box for another purpose. yup. ----------------------------------------------------------------- ATTENTION: The information in this electronic mail message is private and confidential, and only intended for the addressee. Should you receive this message by mistake, you are hereby notified that any disclosure, reproduction, distribution or use of this message is strictly prohibited. Please inform the sender by reply transmission and delete the message without copying or opening it. Messages and attachments are scanned for all viruses known. If this message contains password-protected attachments, the files have NOT been scanned for viruses by the ING mail domain. Always scan attachments before opening them. ----------------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the messagehelp
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6C506EA550443D44A061432F1E92EA4C6C5364>