[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Linux Firewall.



Hi.

Thanks :-)

So if i want to crack a firewall all i need to do is to enable the
IP_FORWARDING ?

Another thing, If i have IP class 192.168.XXX.XXX no one can access to it
from outside, right ?
Isn't it secure by itself ? No one can access my workstations (or private
servers) unless he is on the same network with the same ip class, right ?

Mike





Mike Almogy.
Mofet Institute - Computer Dpt.
+972-3-6901415
+972-52-562237
----- Original Message -----
From: "omerm" <omerm@mercury.co.il>
To: "Mike Almogy" <lizard@mail.mofet.macam98.ac.il>
Sent: Wednesday, April 05, 2000 2:31 PM
Subject: Re: Linux Firewall.


>
>
>
> On Wed, 5 Apr 2000, "Mike Almogy" wrote:
> > Date: Wed, 5 Apr 2000 10:53:01 +0200
> > To: "Linux-il" <linux-il@linux.org.il>
> > From: "Mike Almogy" <lizard@mail.mofet.macam98.ac.il>
> > Subject: Linux Firewall.
> >
> > Hi list.
> >
> > I just finished to read the Firewall-HOWTO.
> > I have few questions that it didn't answer (at least i didn't saw a
clean
> > answer).
> >
> > 1. Why i need to disable the IP_FORWARDING?
>
> When enabled, IP forwarding will make all IP packets pass around your
> firewall
>
> > 3. What is the difference between Firewalling and IP Masquerading ?
> >     (I know the difference in general, what i mean is that it actually
> > does the same thing, securing my Network, or I'm mistaken ?)
>
> Not really. IP masquerading used to incapsulate your IP headers in other
IP
> headers. What for? when you must pass IP packets through some kind of IP
> filter, such as firewall, proxy, or even web server, you can use IP
> masquerasing to forge the filter.
>
>
>
>
> >
> > Thanks Allot,
> BTW:  www.allot.com product is related to topic:))
> >
> > Mike
> >
> >
> >
> > Mike Almogy.
> > Mofet Institute - Computer Dpt.
> > +972-3-6901415
> > +972-52-562237
> >
> >
>


=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il