Firewall Wizards mailing list archives
RE: nmap fun
From: Frank Knobbe <FKnobbe () KnobbeITS com>
Date: Thu, 26 Oct 2000 11:10:46 -0500
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
-----Original Message----- From: Bret Watson [mailto:lists () ticm com] Sent: Thursday, October 26, 2000 9:51 AM [...] Yep Marcus was right - by getting transparent proxies we traded a definite level of security and one should always remember that the standard textbook firewall config always includes a screening router (aka packet filter) in front - its there for a reason guys!... Still it makes on truly uncomfortable trying to defend APs against packet filters when they become transparent to nmap..
uhm... isn't the Gauntlet a hybrid firewall which contains proxy and stateful packet inspection technology? If so, is there a misconfiguration in the packet filter section, or are you saying that the packet filter piece just does not work? Regards, Frank -----BEGIN PGP SIGNATURE----- Version: PGP Personal Privacy 6.5.1 Comment: PGP or S/MIME encrypted email preferred. iQA/AwUBOfhXhkRKym0LjhFcEQJ/qQCgnlQbdzVmHHl0ltNnSo7UVNlbnQ0AoJdE celyWAzNgxaj+80+Sn4gpIWz =EdRW -----END PGP SIGNATURE----- _______________________________________________ firewall-wizards mailing list firewall-wizards () nfr com http://www.nfr.com/mailman/listinfo/firewall-wizards
Current thread:
- Re: nmap fun Chris Calabrese (Oct 27)
- Re: nmap fun Bret Watson (Oct 27)
- Re: nmap fun Magosányi Árpád (Oct 28)
- <Possible follow-ups>
- FW: nmap fun LeGrow, Matt (Oct 27)
- RE: nmap fun Frank Knobbe (Oct 27)
- RE: nmap fun LeGrow, Matt (Oct 27)
- RE: nmap fun Bret Watson (Oct 28)
- RE: FW: nmap fun LeGrow, Matt (Oct 28)
- Re: nmap fun Bret Watson (Oct 27)