Great Circle Associates Firewalls
(September 1996) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: cisco router config question
From: jconnary @ shepards . com
Date: Mon, 30 Sep 96 16:07:17 MDT
To: firewalls @ greatcircle . com 
Hi,

 I am using and ANS Interlock Firewall and, because it only allows 2 
interfaces, want to create a DMZ zone by
securing down my cisco router located between the firewall and the internet. I 
printed out the information in
the show ip interface command. For the following enabled services, I was 
hoping someone from this mailing list
could shed some light on whether they should be enabled or disabled: 

directed broadcast forwarding is enabled
proxy arp is enabled
ICMP redirects are always sent
ICMP unreachables are always sent

Further, any information on securing my router beyond the normal stuff that 
CISCO recommends in their white paper - Increasing Security on IP Networks 
would be appreciated.

Thanks in advance,

Julie Ann Connary
Network Specialist
Shepard's McGraw-Hill
719-481-7383 (FAX: 719-488-5135)
Indexed By Date Previous: RE:Internet Policy
From: LMAANI @ babsim . com
Next: Re[2]: SCO sendmail or mmdf
From: Kyle_Amon @ jabil . com
Indexed By Thread Previous: Re: Subnetting Class C Network
From: Greg Ketell <gketell @ cisco . com>
Next: Checkpoint
From: Kogulapalan <palan @ dataprep . com . my>
Google
 
Search Internet Search www.greatcircle.com