[Shorewall-newbies] Newbie - How to open range of RTP ports

Balaji NJL bajjeen at yahoo.com
Sat Jan 10 20:19:58 PST 2004


>
> Two points:
>
> a) As every fisherman knows, the number of fish you
catch depends on the
> size of the net that you cast. So forwarding a large
number of ports
> creates more exposure than opening a few (ok -- some
ports are more often
> exploited than others but you get the idea).
>
> b) Francesca's point is that when you create this
sort of exposure, you
> should isolate the exposed server from the rest of
your systems by placing
> it on a separate LAN segment (DMZ).
>

yup i agree on second point. i would be moving this
server to my DMZ. i hv
few issues with my DMZ i ll start a separate thread on
that.

thanks a lot.
-B


__________________________________
Do you Yahoo!?
New Yahoo! Photos - easier uploading and sharing.
http://photos.yahoo.com/


More information about the Shorewall-newbies mailing list