Hi security gurus,
FYI, a simple ipf rules like the one below didn't work too.
pass in all
pass out all
I guess, it will work if I am going to disable NAT on my openbsd then create
a route to my homework network from the WinNT box. This will work because,
packets won't be masqueraded anymore but instead, it will be routed.
My concern now is, I wasn't able to make it work with Openbsd and that's
what I really wanted. It's because, I'm planning to move all our WinNT
server to the DMZ side of the OpenBSD. I'm planning to put 3 lan cards on
the Openbsd, 1 for exposed/untrusted, another 1 for the DMZ and the other 1
for my private network.
Looks like Chris Keladis is right. He told me that maybe, netbios-session
for layer 7 isn't available yet with NAT implementation.
Anyways, another one.
I've downloaded jolt and isic program which makes winboxes cpu utilization
to 100%. Will these winboxes still be affected by these tools if I moved
them to the DMZ side of my firewall?
Thanks in advance.
Ronneil
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
