gippah <[EMAIL PROTECTED]> wrote:
> o I didn't set up NFS because I figured it might be too much of a
> security risk on the gateway machine. Any machines behind the gateway
> could certainly use NFS though if someone desired to do so. I
> personally think it's faster just to use FTP or even HTTP.
I just have to comment on this last part ... I have NFS running, even on
my firewall machine. I have full confidence in it's security, mainly
because I only export my nfs partitions to IP ranges that are on my
internal subnet (192.168.x.x) Then my firewall is set up to drop all
requests it recieves from the interface that the internet packets come
over that have the 192.168.x.x source addressing. It's quite easy
using ipfwadm. If you'd like I can post my firewall rules.
Aaron
---------------------------------------------------------------------------
Send administrative requests to [EMAIL PROTECTED]
