On Wed, May 07, 2003 at 11:27:16AM +0200, Tim van Erven wrote: > On Wed, 07/05/2003 07:40 +0200, Hans Spaans wrote: > > > > How are you going to handle firewalls and stuff? This because you need > > to accept traffic for those ports. > > You always need to let the trigger through your firewall. It's just > easier and less of a custom hack if it's sent on a single port.
Something like Cisco CBAC maybe, but you don't want that performance wise. But back to the original suggestion, I think its better protect that one service better by for example using IPsec and strong authentication then using some obscure way of authentication that opens extra services and changes firewalls runtime. A little voice inside tells me that you don't want that ;-) -- Hans
