How about a modem? This gives a single point of entry, while only allowing a
single user access.
_________________Begin included text______________________________
A vendor of an on-line database asks that we open our firewall to their
Class B address space for both UDP and TCP on ports 8000 thru 9120.
I have been asked to quantify the risks involved. My initial list includes:
Why do they need their entire Class B? This allows ANYONE in their domain
Why do they want 1120 ports of both UDP or TCP? This seems a little large to
Any words of wisdom from admins "who have been there" that I can use to
bolster my initial "This is a BAD IDEA" reaction to upper management would
Senior UNIX System Administrator
_________________End included text__________________________________