[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-security] to Mike Vanecek

Subject: [cobalt-security] to Mike Vanecek
From: "Jeff Newman" <mjeffn@xxxxxxxx>
Date: Tue, 21 Mar 2000 00:16:47 -0600

Email me directly ( mjeffn@xxxxxxxx ) what services you wish to run on the
cube and i'll make some suggestions.  I don't want to do this publically on
the list.

-----Original Message-----
From: cobalt-security-admin@xxxxxxxxxxxxxxx
[mailto:cobalt-security-admin@xxxxxxxxxxxxxxx]On Behalf Of Mike Vanecek
Sent: Monday, March 20, 2000 4:35 PM
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: Re: [cobalt-security] Qube2 Firewall "feature"

I have been trying to use the Cobalt Firewall wizard to generate my ip
filters. The ones it suggests do not make a whole lot of sense to me (may be
my newness at figuring out the Qube2 ip filter logic). I thought I read a
post from someone saying that the wizard and/or the Qube2 IP filtering
method
had a flaw and that Cobalt was working on it. However, I have not been able
to find the message nor anything in the KB that helps.

Do you know if the wizard and/or the Qube2 ip filters have any bugs? If so,
what?

Basically, I want to set up filtering to accomplish what you have indicated
in your message. Any tips on setting up efficient filters?

Does the Qube2 log filters that are rejected? If so, where and how to I
review them? I'd like to know if an attempt was made to get through the
firewall.

Thanks.

On Sun, 19 Mar 2000 22:13:17 -0600, "Jeff Newman" <mjeffn@xxxxxxxx> wrote:

:>Malcolm:
:>
:>Outbound refers to what protocols you allow the users behind the firewall
to
:>use.  Generally with the Cube as your firewall, you will allow all
outbound
:>connections and deny all inbound connections except to the services that
you
:>want connected such as ports 21, 25, 80 and all ports in the range from
1025
:>to 65355.  NEVER allow an outside connection to 139, in fact don't run SMB
:>if this is your firewall.  That's just asking for trouble.  With the cube,
:>you can even make things worse yet by using it to authenticate your
trusted
:>network users under any circumstance!  Don't forget to include as the last
:>line in the firewall a statement that denys all incoming to all
destinations
:>on all protocols.

_______________________________________________
cobalt-security mailing list
cobalt-security@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-security

References:
- Re: [cobalt-security] Qube2 Firewall "feature"
  - From: Mike Vanecek

Prev by Date: RE: [cobalt-security] Qube2 Firewall "feature"
Next by Date: RE: [cobalt-security] Qube2 Firewall "feature"
Previous by thread: Re: [cobalt-security] Qube2 Firewall "feature"
Next by thread: RE: [cobalt-security] Qube2 Firewall "feature"

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index

Sun Cobalt and other Linux administration by Zeffie
A Sun Cobalt and Linux Specialist Since 1999
Sun Cobalt Repairs, Development, and Maintenance.
Home of the Worlds Largest Collection of Sun Cobalt Updates!
Sun Cobalt Spam Filter, Security, Firewall, Anti Virus Products.
734-454-9117 US Toll Free 800-231-4459

Zeffie's Sun Cobalt Restore CD's

Click here to buy me a drink at the local pub!
(includes tip and paypal fees)