Re: (PM) filter for land attach

Russ Hughes (portmast@owt.com)
Fri, 21 Nov 1997 22:07:53 -0800 (PST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Robert Hanson: "(PM) Re: your mail"
Previous message: Warren Vanichuk: "Re: (PM) Is ComOS affected by a land.c attack ?"

On Fri, 21 Nov 1997, Jake Messinger wrote:

> On Fri, 21 Nov 1997, Russ Hughes wrote:
>
> >
> > deny 192.168.1.1/32 192.168.1.1/32 <--- first assigned ip
> > ...
> > deny 192.168.1.30/32 192.168.1.30/32 <--- last assigned ip
> > permit 0.0.0.0/0 0.0.0.0/0
> >
> is it that simple? What are you denying? Everything?
>
For incomming:

Denying anything to an assigned ip from that assigned ip and allowing
everything else.

Outgoing is the job of the router.

I think, I don't have any experience with the pm filters but it looks like
it makes some sense. But how much impact will these rules have and the
pm2 or pm3 cause it has to apply all 30/50 rules per packet?

Russ

-
To unsubscribe, email 'majordomo@livingston.com' with
'unsubscribe portmaster-users' in the body of the message.

Next message: Robert Hanson: "(PM) Re: your mail"
Previous message: Warren Vanichuk: "Re: (PM) Is ComOS affected by a land.c attack ?"