[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] Ipchains and dns
- Subject: Re: [cobalt-security] Ipchains and dns
- From: "E.B. Dreger" <eddy+public+spam@xxxxxxxxxxxxxxxxx>
- Date: Wed, 16 Apr 2003 19:46:24 +0000 (GMT)
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
RH> Date: Wed, 16 Apr 2003 20:55:21 +0200
RH> From: "Robbert Hamburg (HaVa Web- & Procesdesign)"
RH> LOL and then have no firewall :-)
What do you wish to block, and from where? "Firewall" is too
nebulous... the packet filtering to which you refer may be the
answer, but application-layer filtering may be more appropriate.
RH> Hehehe i use a raq4 for testing right now.
RH>
RH> See my reply to michael also
So you want to allow zone transfers to specific servers, and
allow DNS queries from everyone? The RaQ4 allows AXFR anywhere
by default. I hack the GUI's Perl script to change that.
At least the RaQ550 _finally_ does things right...
Eddy
--
Brotsman & Dreger, Inc. - EverQuick Internet Division
Bandwidth, consulting, e-commerce, hosting, and network building
Phone: +1 (785) 865-5885 Lawrence and [inter]national
Phone: +1 (316) 794-8922 Wichita
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Date: Mon, 21 May 2001 11:23:58 +0000 (GMT)
From: A Trap <blacklist@xxxxxxxxx>
To: blacklist@xxxxxxxxx
Subject: Please ignore this portion of my mail signature.
These last few lines are a trap for address-harvesting spambots.
Do NOT send mail to <blacklist@xxxxxxxxx>, or you are likely to
be blocked.