You could block those poerts at the screening router.
Internet<---->router<---->screening router<--->fw-1<--->inside net Thanks, Ron DuFresne On Wed, 26 Dec 2001, Fredy Santana wrote: > I Everybody: > > I'm making some research to make a kind of "Security checklist" for > Firewall-1 over Nokia. Does anyone have some recommendations to secure a > Firewall-1? or information abou it?. I mean, by example, to disable the > ports 256 and 258 to Internet if your firewall is not being managed from > Internet. > > I hope your help > > > Thanks in advance > > Regards from Chile > Fredy R. Santana V. > Ingeniero Civil El�ctrico - CCSA - CCDA > Orion 2000 - Servicios Profesionales en Seguridad Inform�tica > La Concepcion 322 piso 12, Providencia. > Santiago, Chile > Fono: 56-2-6403944, Fax: 56-2-6403990 > e-mail: [EMAIL PROTECTED] > http://www.orion.cl > > > _______________________________________________ > Firewalls mailing list > [EMAIL PROTECTED] > http://lists.gnac.net/mailman/listinfo/firewalls > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ "Cutting the space budget really restores my faith in humanity. It eliminates dreams, goals, and ideals and lets us get straight to the business of hate, debauchery, and self-annihilation." -- Johnny Hart ***testing, only testing, and damn good at it too!*** OK, so you're a Ph.D. Just don't touch anything. _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
