On Thu, 23 Mar 2000, Rex Sanders wrote:
> Cut the transmit cable pair on the Ethernet cable of your Internet link, or
> make a special cable with only the receive pair connected.
This does not work. Without a receive pair you will never get link. Best
you can do is add a lot of resistance so that link is still established
but the inductance is too high to pass data.
> Caution: I've read about, but never used this technique.
This worked back in the AUI days, but not with an RJ-45. Check the
archives, this has come up more than once. ;)
> >The current problem is that I need to make sure there is no leakage of
> >internal traffic through the Internet NIC. I also need to be assured that
> >the NIC does not inadvertently respond to broadcast traffic despite it not
> >having an IP address.
With no IP address, its not going to respond to IP broadcasts. Kind of
like an IP only machine will not respond to IPX broadcasts. If the system
does not understand the protocol it does not know how/if it should
respond.
If you are truly paranoid & you have a Cisco on the perimeter, setup an
ACL to filter out traffic originating from this MAC address.
HTH,
Chris
--
**************************************
[EMAIL PROTECTED]
* Multiprotocol Network Design & Troubleshooting
http://www.amazon.com/exec/obidos/ASIN/0782120822/geekspeaknet
* Mastering Network Security
http://www.amazon.com/exec/obidos/ASIN/0782123430/geekspeaknet
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
