Firewalls: Re: Re[2]: NT NAT

Firewalls
(January 1997)

Indexed By Thread: [Previous] [Next]

Subject:	Re: Re[2]: NT NAT
From:	lists @ lina . inka . de (Bernd Eckenfels)
Date:	Sun, 5 Jan 1997 02:01:44 +0100 (MET)
To:	ckn @ findata . se
Cc:	firewalls @ GreatCircle . COM
In-reply-to:	<Pine . SUN . 3 . 93 . 970105005820 . 22843A-100000 @ wintermute . marievik . findata . se> from "Carl Karlsson" at Jan 5, 97 01:16:33 am

Hello,

>                                                 Do I need to care about
> source routed packets if my upstream provider has everything configured
> as they should?

Ask your upstream providee, how should we know if he is filtering source
routed packets? You can drop them at your router which links you to the
outside world. Use fireeall rules or settings like "drop source routed
frames"with linux.

> If I am using for example Linux, would it be enough to
> configure the linux kernel to drop source routed packets? To configure the
> linux firewall to ignore localnet packets from the external link?

Both. And to ignore PAckates from your internal net as the source on
external interfaces. And ignore packates with internal address as source on
external interface and so on. This will prevent you from IP-Spoofing and
will block most simple attacks.

Greetings
Bernd
y

Follow-Ups:

Re: Re[2]: NT NAT
From: Ron DuFresne <dufresne @ parka . winternet . com>

References:

Re: Re[2]: NT NAT
From: Carl Karlsson <ckn @ findata . se>

Indexed By Date	Previous:	Slow down From: "Mr. S Armitage" <armo @ mint . u-net . com>
Indexed By Date	Next:	Re: Re[2]: NT NAT From: Ron DuFresne <dufresne @ parka . winternet . com>
Indexed By Thread	Previous:	Re: Re[2]: NT NAT From: Ambrose Li <news-misc @ mingpaoxpress . com>
Indexed By Thread	Next:	Re: Re[2]: NT NAT From: Ron DuFresne <dufresne @ parka . winternet . com>