On Tue, 2002-05-21 at 11:33, Thomas Bushnell, BSG wrote: > In that case, he can block ports which are commonly used to violate > badly configured machines behind his network.
Or, he can block all ports from all hosts from all directions and come up with a totally secure network connection <grin/>. This has the added benefit of reducing those nasty volume base charges. Of course, there is a limitation in this, can't think of what it is... ;-) <runs_for_cover/>. Seriously, a firewall does serve useful if there are services you want to use internally, always use internally, and never allow any external access (NFS is a good example that comes to mind). True, you are placing more trust on internal people, but why allow external access when you don't need/use/want external access? -- Brian May <[EMAIL PROTECTED]> -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
