On Mon, Jul 23, 2001 at 02:03:49PM -0700, Justin Bengtson wrote: > debian running iptables. the firewall doesn't need storage. it needs to > talk to the networked drive so i can play music with it. besides, i only > filter the outside world, not the internal LAN. i'm sure SAMBA is mature > enough to know what connections it is allowed to talk on and which not to. > isn't it? > But if your f/w gets comprimised, Samba may be an easy route to the rest of your network. It's better to have your f/w trust your network, than to have your network trust your f/w, if that is possible with Samba. In other words, (some of) your internal network should be able to connect to your firewall, but your firewall should not be able to connect to anything on your internal network. <[EMAIL PROTECTED]>
