Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 23 Aug 2005 09:47:47 +0400
From:      Dmitry Mityugov <dmitry.mityugov@gmail.com>
To:        Giorgos Keramidas <keramida@ceid.upatras.gr>
Cc:        freebsd-questions@freebsd.org
Subject:   Re: Internet firewall
Message-ID:  <b7052e1e05082222474a4c659b@mail.gmail.com>
In-Reply-To: <20050819214637.GA10088@flame.pc>
References:  <43064B2F.7050605@orcon.net.nz> <20050819214637.GA10088@flame.pc>

next in thread | previous in thread | raw e-mail | index | archive | help
On 8/20/05, Giorgos Keramidas <keramida@ceid.upatras.gr> wrote:
> On 2005-08-20 09:12, Gareth Campbell <gcampbell@orcon.net.nz> wrote:
> > Hey guys,
> >
> > I'm a newbie and have got my box all set up with FreeBSD 5.4, fluxbox
> > wm, firefox, thunderbird etc...  It's all looking awesome, with
> > transparency, and working well.  I run it on dial-up ppp but haven't se=
t
> > up any firewall.  Should I be setting one up?
>=20
> Yes, definitely.
>=20
> It takes about 4-5 seconds when I connect with my dialup account from
> home and then incoming connections start coming from spyware, trojans
> and misc. other scanners :-)
...

But it is possible to set up ppp to reject all incoming requests (with
nat deny_incoming set to yes IIRC). After that, the machine will be
"invisible" to the outside world, even if no firewalls are configured
on it. At least Shields Up! service located at
https://www.grc.com/x/ne.dll?bh0bkyd2 will tell you so.

--=20
Dmitry Mityugov, St. Petersburg, Russia
I ignore all messages with confidentiality statements

"We live less by imagination than despite it" - Rockwell Kent, "N by E"



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?b7052e1e05082222474a4c659b>