> I understand it is important to explicitly define which ports are
> acceptable in a firewall, but I don't understand why. If I have source
> and destination IP's defined, does it really make that much difference?
> Dave Wreski
Yes, unless you want the remote IPs to be able to access all your services.
I'm sure you have some services that you don't want anybody outside your
network using: NFS, NIS, etc.
Another point is that if someone attacks you via IP spoofing, he will be able
to access all the services running on your machine.
Rodrigo de La Rocque Ormonde
e-mail: ormonde @
PGP Public key: finger ormonde @