Firewalls: Re: none + some VS all

Firewalls
(September 1992)

Indexed By Thread: [Previous] [Next]

Subject:	Re: none + some VS all - some
From:	sidney @ borland . com (Sidney Markowitz)
Date:	Fri, 25 Sep 92 14:56 PDT
To:	Amos Shapira <amoss @ cs . huji . ac . il>
Cc:	firewalls @ GreatCircle . COM

+-- On Sep 25,  1:46pm, Amos Shapira wrote:

> I think you might be interested in the "established" parameter in
> the extended access-list provided by Cisco.  This will allow you to
> initiate any TCP connections to outside, and let the outside machine
> respond to the connection, but will not allow outside machines to
> initiate a TCP connection.  This is how I plan to install the firewall
> here.

That sounds good and eventually we'll be routing through a Cisco box,
but in the meantime we're using NOS and I can modify the routing code,
but only if I know how. So, can anyone tell me how the router can
distinguish between established connections and those initiated from
the outside?  That's actually the problem we've been discussing, and
all this means is that Cisco has solved it, not how they do it.

 -- sidney markowitz <sidney @
 borland .
 com>

Follow-Ups:

Re: none + some VS all - some
From: Amos Shapira <amoss @ cs . huji . ac . il>

Indexed By Date	Previous:	Apologies... From: steve @ wattres . SJ . CA . US (Steve Watt -- KD6GGD)
Indexed By Date	Next:	cisco ``established'' keyword From: jonl @ hal . com (frederick smythe, esquire)
Indexed By Thread	Previous:	Re: none + some VS all - some From: Amos Shapira <amoss @ cs . huji . ac . il>
Indexed By Thread	Next:	Re: none + some VS all - some From: Amos Shapira <amoss @ cs . huji . ac . il>