Firewall Wizards mailing list archives

Re: Hello i'm trom

From: HSKarim () aol com
Date: Thu, 18 Jun 1998 23:34:50 EDT

Rick....

Im not too sure about your claim Rick. Mainly because Gauntlet uses ipfs (IP
filtering screen) and everything is stopped by it... not just by the IP
forwarding sysctl option.

Please correct me if Im wrong. I know in Gauntlet's that I've set up... I
monitored traffic on the outside as well as the inside during attacks and I
saw no traffic pass.

-Hassan

In a message dated 98-06-16 00:25:29 EDT, rmurphy () mitretek org writes:

<< If IP forwarding is enabled, someone simply directs their traffic through
 the firewall - the firewall proxies never see the traffic, thus it's simply
 acting as a wide-open router.
 You must disable ip forwarding for the firewall to be effective.
        -Rick >>

Current thread:

Hello i'm trom trom H (Jun 13)
- Re: Hello i'm trom Rick Murphy (Jun 15)
- Re: Hello i'm trom Michael Kyle (Jun 15)
- <Possible follow-ups>
- Re: Hello i'm trom HSKarim (Jun 23)
  - Re: Hello i'm trom Rick Murphy (Jun 23)