-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Christ Schlacta wrote:
> no, I'm saying exposing windows to the internet is always a bad idea.
> it should NEVER be in a dmz, and should always be protected by the
> firewall with a policy reject or policy drop.
Christ -- perhaps you need to re-read the OP's post:
"In this case, I will open DMZ only for LAN connections. The WAN
interface will only have open ports for LAN adapter."
It seems that in his case, the DMZ is more protected from the Internet
than the LAN is.
- -Tom
- --
Tom Eastep \ When I die, I want to go like my Grandfather who
Shoreline, \ died peacefully in his sleep. Not screaming like
Washington, USA \ all of the passengers in his car
http://shorewall.net \________________________________________________
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iEYEARECAAYFAkqhvXEACgkQO/MAbZfjDLJ54wCfU7aN3J5Lui0fyYtN1KaWQWDJ
vuMAoJg1l7K6RC29BTqNq0ffW5Emi7hL
=ZKV5
-----END PGP SIGNATURE-----
------------------------------------------------------------------------------
Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day
trial. Simplify your report design, integration and deployment - and focus on
what you do best, core application coding. Discover what's new with
Crystal Reports now. http://p.sf.net/sfu/bobj-july
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
