Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Firewalls
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Is this a good firewall?

from [Robert Hajime Lanning] Network Security [Permanent Link]
Subject: Re: Is this a good firewall?
Date: Wed, 23 Feb 2005 17:19:49 -0800 
On Sat, 19 Feb 2005 00:49:52 -0500, Kevin Old <kevinold@gmail.com> wrote:

1) Is there I can allow a dynamic hostname to have unlimited access to
the server?  For example, if I'm a Comcast subscriber the hostname to
my cable modem is 12-134345-112.nashville.comcast.com or something
like that.  Is there a way I can create a firewall rule to allow all
*.nashville.comcast.com requests for any port rather than a static IP?


You can't do a *.nashville.comcast.com as the lookups happen once while
the rule is being inserted.  Iptables does not do on the fly reverse lookups
to find the PTR records.

When you get a DHCP address from comcast, look at the netmask.  Then
create a network object that has the network you are on.   You most likely
will not be switching networks, but you could switch IPs in the network.


2) Are there other restrictions I should place on the 9 ports I have
open?  If so, what are they?


Possibly a rate limit.

-- 
END OF LINE
       -MCP
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Choosing a firewall (was Re:firewall suggestion), Tom Farrar
Next by Date:  Re: Choosing a firewall (was Re:firewall suggestion), Bob Noxious
Previous by Thread:  Re: Is this a good firewall? (allowing in from dynamic host), Robert Hajime Lanning
Next by Thread:  authenticating admins in DMZ, sven.de.jonghe
Indexes:  [Date] [Thread] [Top] [All Lists]