I have a default policy of deny on the input chain. I do not open up
netbios. And yet when I run nmap to scan my computer, it shows that netbios
ports (137/udp, 138/udp, and 139/tcp) are open. It also shows that port
1031/udp is open (I have no idea what this is -- nmap says it's iad2) and
that
Message -
From: Jose Nazario [EMAIL PROTECTED]
To: jennyw [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Sent: Saturday, November 17, 2001 4:08 PM
Subject: Re: Please help w/ ipchains log
On Sat, 17 Nov 2001, jennyw wrote:
My interpretation is that several computers, all within the 171.66.x.x
I'm just starting to learn ipchains and have a
Debian GNU/Linux system (woody) setup. This morning, I started getting a lot of
stuff in the log, and I'm not sure what it is. An excerpt from the log is at the
end of the message.
My interpretation is that several computers, all
within the
There are other appliances out there ... some people like WatchGuard's
Firebox.
Here are my impressions of the three you mentioned:
NetScreen: NetScreen's claim to fame is speed. Their ASIC technology allows
them near-wire speed service (firewall and VPN). Another great thing they
hve is their
I've recently had a request that for a demo we need to get NetMeeting
working. I hadn't ever used NetMeeting until about 5 minutes ago ... It's
kind of neat on the LAN but I have no idea how to get this to work through
the firewall. I have no idea what the security risks are with this product,
What firewall are you using? On FW-1 on NT, you need to make changes to the
local.arp file in fwdir$/state and also stop and start the services.
You're using the Firewall's external IP for both pcA and SMTP? You might
also try not using the firewall's external address and using another valid
Can you provide more information? For
example, what are you using to do NAT (firewall, OS, etc.)? What addresses
are you using (or, Are you translating to the same address as you used in static
NAT?)
P.S. Not all of us are sirs ...
- Original Message -
From:
Zhang Zhengyu
Thanks to all for the feedback on firewall appliances. Feelings are mixed.
Some people like appliances, but a lot of people mentioned that these
devices are lower end or less secure than other firewalls. Some people are
also turned off by the fact that the hardware and software are often
We have two issues that we're trying to address which our current firewall
(FW-1 on Intel/NT) doesn't do a good job of: Securing our world-wide
network, including small field offices; and firewalling at wire speed.
Products we're looking at include: Cisco; Nokia/Checkpoint; and NetScreen.
Cisco