Firewall Wizards mailing list archives
Re: dns outbound
From: "Ryan Russell" <Ryan.Russell () sybase com>
Date: Mon, 17 May 1999 08:17:02 -0700
Well, how about this... On a couple of mailing lists
I subscribe to, like this one, I've seen two notes.
One claims that ICQ will automatically try to use
UDP 53 if it doesn't work in it's normal mode.
Another claimed that one of his uses was able to
surf the web without having to authenticate on the
way out, via the DNS rule.
Ryan
Hello,
This is going to be a stupid question, but I hope someone can answer the
question without my being flamed :-(.
I have gotten a request to allow all clients behind a firewall to have
unrestricted access to dns servers outside the firewall.
Can I get help in coming up with pros and cons off doing that. I tried to
search the archives but the search page is not working properly.
I am not comfortable in allowing udp packets outbound from all systems.
If it helps we are using firewall-1.
Thanks
- Deepak
Current thread:
- dns outbound Deepak Vaidya (May 16)
- Re: dns outbound Lance Spitzner (May 17)
- Re: dns outbound Larry Chin (May 17)
- RE: dns outbound Thomas Crowe (May 18)
- Re: dns outbound Joseph S D Yao (May 17)
- <Possible follow-ups>
- Re: dns outbound David Goldsmith (May 17)
- RE: dns outbound Buckley, Neil (May 17)
- Re: dns outbound Ryan Russell (May 17)
- Re: dns outbound Marcus J. Ranum (May 18)
- Re: dns outbound chuck (May 18)
- Re: dns outbound Ge' Weijers (May 19)
- Re: dns outbound Matt McClung (May 18)
- Re: dns outbound Darren Reed (May 18)
- Re: dns outbound Bennett Todd (May 19)
- Re: dns outbound Marcus J. Ranum (May 18)
- Re: dns outbound Deepak Vaidya (May 17)
- Re: dns outbound wyllys (May 18)
- Re: dns outbound David Gillett (May 19)