On Wed, Jun 04, 2003 at 10:30:15PM -0400, JT said: > I always thought it was illogical to let packets reach the machine I'm > trying to protect. I'd rather pass through a dedicated machine. Are there > any advantages TO using a production machine as a firewall??
Well, 80% of attacks are internal, so there's an advantage to having a software firewall as ONE of your layers, in that it's pretty costly to have a seperate dedicated firewall for every machine. -- Shawn McMahon | Let every nation know, whether it wishes us well or ill, EIV Consulting | that we shall pay any price, bear any burden, meet any UNIX and Linux | hardship, support any friend, oppose any foe, to assure http://www.eiv.com| the survival and the success of liberty. - JFK
pgp00000.pgp
Description: PGP signature
