I know that this is probably a radical answer, but what about using Novel access permissions to restrict access to the data? I don't know why you would want to go to the trouble of putting up firewalls when just a simple permission change should work. It's a lot easier and I expect a lot safer to perform security at the operating system level than at the network level.
Ed Woodrick
----------
From: bressen @
hks .
net[SMTP:bressen @
hks .
net]
Sent: Thursday, February 01, 1996 5:31 AM
To: firewalls @
bb .
hks .
net
Subject: Re: Internet-access from Novell
Here's the worse problem I mentioned.
I've grepped over 9000 archived articles of this group
and found no mention of how to firewall novell boxes from
each other. I have a client in the financial industry who
has a market data feed from a provider. The market data feed
is provided by a novell server on a leased line, with special
client software for the users. How do I protect said client
from, say, a disgruntled mailroom employee at the provider end,
bent on hacking on the clients network?
I'm not even sure what novell uses in lieu of tcp/udp ports;
pointers to IPX/SPX docs, and the Novell equivalent of
an /etc/services file would be most appreciated.
Are there any IPX/SPX packet filters available?
Are there any IPX proxy server firewalls available?
CJC from Novell mentioned their existence, but gave
little other info.
Of course I'll start by recommending that the market data feed
box go onto its own ethernet segment, and that IP traffic is
not forwarded on or off of that segment.
Follow-Ups:
|
|
