From owner-freebsd-security Thu Sep 9 8:12:24 1999 Delivered-To: freebsd-security@freebsd.org Received: from flood.ping.uio.no (flood.ping.uio.no [129.240.78.31]) by hub.freebsd.org (Postfix) with ESMTP id BD3EB151CD for ; Thu, 9 Sep 1999 08:12:18 -0700 (PDT) (envelope-from des@flood.ping.uio.no) Received: (from des@localhost) by flood.ping.uio.no (8.9.3/8.9.3) id RAA00959; Thu, 9 Sep 1999 17:11:50 +0200 (CEST) (envelope-from des) To: Mark Newton Cc: Goran.Lowkrantz@infologigruppen.se (Lowkrantz, Goran), freebsd-security@FreeBSD.ORG Subject: Re: Lisen only NIC References: <199909091415.XAA72769@atdot.dotat.org> From: Dag-Erling Smorgrav Date: 09 Sep 1999 17:11:49 +0200 In-Reply-To: Mark Newton's message of "Thu, 9 Sep 1999 23:45:07 +0930 (CST)" Message-ID: Lines: 18 X-Mailer: Gnus v5.5/Emacs 19.34 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Mark Newton writes: > Lowkrantz, Goran wrote: > > To check on our DMZs I am building a monitor system with a protected > > interface connected to the internal network and a multiport card to monitor > > the consoles of the systems in the DMZs. To check for attacks I have setup > > Snort and have tested with the Vision IDS but I want to hide the network > > interface completely so that it can't be seen or heard or attacked or > > anything. > Cut the transmit pin on your patchlead. No. You'll lose link. Instead, use an external tranceiver and cut the transmit pin on the AUI end of the tranceiver. Search the BUGTRAQ archives for URLs to detailed descriptions of how to do this (and why cutting the transmit pin on a 10BaseT patch cable won't work) DES -- Dag-Erling Smorgrav - des@flood.ping.uio.no To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message