Re: Firewall on server itself

[Justin Pryzby <justinpryzby () users sf net>]

Sure, you could set up the hardware firewall to do general pupose
filtering (don't pass mallicious icmp, block the virus-of-the-day port,
etc) and then set the individual hosts' firewalls to do things like
"allow only establisted connections and connections to tcp:80, plus
connections to tcp:22 from privileged hosts".  That one would make sense
for your webserver.

Justin

On Wed, Jun 25, 2003 at 06:34:02PM +0000, Anish Basu wrote:
...
> Are there any advantaqes or disadvantages to having two firewalls set up
> this way?
>
> Thanx in advance for any help.

---------------------------------------------------------------------------
Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts!
The Gartner Group just put Neoteris in the top of its Magic Quadrant,
while InStat has confirmed Neoteris as the leader in marketshare.
     
Find out why, and see how you can get plug-n-play secure remote access in
about an hour, with no client, server changes, or ongoing maintenance.
          
Visit us at: http://www.neoteris.com/promos/sf-6-9.htm
----------------------------------------------------------------------------