From mboxrd@z Thu Jan  1 00:00:00 1970
From: "Alex Bennee" <alex@bennee.com>
Date: Thu, 23 May 2002 10:58:39 +0000
Subject: Re: [LARTC] Beginner
Message-Id: <marc-lartc-102215156912419@msgid-missing>
List-Id: <lartc.vger.kernel.org>
References: <marc-lartc-102214898810761@msgid-missing>
In-Reply-To: <marc-lartc-102214898810761@msgid-missing>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
To: lartc@vger.kernel.org

ewan said:
>
>> #Lan--Internal Firewall--- External firewall -- Internet
>>                         |
>>                         |
>>                    webserver
>
>
> what purpose does the internal firewall serve? just plug everything
> into one firewall and write rules accordingly

There is nothing wrong with having multiple layers of firewalls. It means
your haxor has several layers of security to beat - security through depth.

But you can just use iptables on your internal firewall as well. No point
learning new semantics :-)

Alex
www.bennee.com/~alex/


_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/