Mailing List Archive
Support open source code!
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
firewalling behind NAT?
- To: tlug group <tlug@example.com>
- Subject: firewalling behind NAT?
- From: "Thomas O'Dowd" <tom@example.com>
- Date: Tue, 22 May 2001 00:16:41 +0900
- Content-Disposition: inline
- Content-Type: text/plain; charset=us-ascii
- Reply-To: tlug@example.com
- Resent-From: tlug@example.com
- Resent-Message-ID: <gK3u1C.A.gEG.9CTC7@example.com>
- Resent-Sender: tlug-request@example.com
- User-Agent: Mutt/1.2.5i
Hi, Quick question, do you need to use a firewall if you are behind a NAT router? Ie, my machine has a non-routable ip address and the gateway is a separate box (in this case, an ADSL router) on the LAN. I filter all open ports on the router to only accept incoming connections to the router on the internal interface. Quick port scan from the outside confirmed this. Since I'm not really filtering anything else right now, can a cracker somehow find away through my router to a NAT'd machine on the inside? I don't think so, but I could be wrong? Also, just installed RH7.1 and think it is kinda wierd that they start with ipchain policies of accept and add explicit things to drop rather than a policy of drop and the other way round, which is probably the way that I would do it. Cheers, Tom. -- Thomas O'Dowd. - Nooping - http://nooper.com tom@example.com - Testing - http://nooper.co.jp/labs
- Follow-Ups:
- Re: firewalling behind NAT?
- From: Jonathan Q <jq@example.com>
- Re: firewalling behind NAT?
- Prev by Date: Re: Back slash
- Next by Date: Re: firewalling behind NAT?
- Prev by thread: Re: Back slash
- Next by thread: Re: firewalling behind NAT?
- Index(es):
| Home Page | Mailing List | Linux and Japan | TLUG Members | Links |