Dennis,
> The security risk of exposing more machines directly is that if one machine
> is compromised, the hacker will be able to see the traffic between DMZ
> (well, no DMZ in this case) and your internal network and perform further
> attack.
Hadn't thought of that. I'll consider the bridge/firewall strategy. Thanks. I
suppose to be doubly secure I could set up everything behind the bridge with
protection so if the bridge failed I could just bypass it and still have some
protection.
Dave Harms
[EMAIL PROTECTED]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
