[cumbria_lug] Build a better firewall...

Schwuk cumbria at mailman.lug.org.uk
Tue Aug 12 17:37:01 2003


Ian Linwood said:
> No spoofing protection.
> No ICMP protection.
> No protection from OS identification, etc.
> Inadequate logging.
> No protection from internal problems/hacks.
> What about malformed packets...
> The list goes on, unfortunately  :-(
>
> Simple, rules offering basic packet filtering/masq.
> Will deter most...but, no use against someone who has a clue...

Got some suggestions on how to implement the above?

Cheers,
--
Schwuk