From owner-freebsd-security Wed Oct 25 11:42:36 2000 Delivered-To: freebsd-security@freebsd.org Received: from maile.telia.com (maile.telia.com [194.22.190.16]) by hub.freebsd.org (Postfix) with ESMTP id 253BF37B4D7 for ; Wed, 25 Oct 2000 11:42:33 -0700 (PDT) Received: from ents02 (t1o90p104.telia.com [195.67.216.104]) by maile.telia.com (8.9.3/8.9.3) with SMTP id UAA26367; Wed, 25 Oct 2000 20:42:31 +0200 (CEST) From: "James Wilde" To: =?iso-8859-1?B?UORyIFRob3Jlbg==?= , Subject: RE: Firewall Date: Wed, 25 Oct 2000 20:43:05 +0200 Message-ID: <000701c03eb3$6932aa10$8208a8c0@iqunlimited.net> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook 8.5, Build 4.71.2173.0 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300 In-Reply-To: Importance: Normal Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > -----Original Message----- > From: owner-freebsd-security@FreeBSD.ORG > [mailto:owner-freebsd-security@FreeBSD.ORG]On Behalf Of Pär Thoren > Sent: Wednesday, October 25, 2000 18:57 > To: freebsd-security@FreeBSD.ORG > Subject: Firewall > > > > Hi! > > I want to protect a network with a firewall. The network is > xx.xx.xx.0 and has a gateway at xx.xx.xx.1 > dns servers are xx.xx.xx.2 and xx.xx.xx.3 I should have said that I am assuming these dns servers are private, that is purely for the use of name resolution on the internal network. Received wisdom maintains that public dns servers, along with smtp servers should be on the outside as a result of weaknesses in the protocols. This may have changed with more modern versions of the standard daemons. mvh/regards James To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message