[Gllug] Opinions on Smoothwall and other firewalls
tet at accucard.com
tet at accucard.com
Thu Oct 11 15:59:42 UTC 2001
>and there's the "Invisible Firewall HOWTO" at
>
>http://www.openlysecure.org/openbsd/how-to/invisible_firewall.html
Note that despite the name, this isn't completely invisible. It still
(AFAIK) decrements the TTL. As it should, too. Although some security
"experts" will try and convince you that a *completely* invisible
proxy/firewall/whatever is a good idea, they're almost invariably not.
The TTL exists for a reason, and passing a packet without modifying it
will bring everything to a grinding halt the first time you run into
routing problems...
Tet
--
Gllug mailing list - Gllug at linux.co.uk
http://list.ftech.net/mailman/listinfo/gllug
More information about the GLLUG
mailing list