Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
11-28-2001, 08:13 AM
|
#1
|
LQ Newbie
Registered: Nov 2001
Posts: 12
Rep:
|
firewall is safety?
hi,
all friends saw this.
here i would like to describe my though and my testing. it is only idea. Never you believe or not, firewall for internal is not guard, you can not protect parts of men in internal. If it exist someone can freely go out to browser, others who are banned to go out freely can freely go out by other way. This is because any one can change his ip address and route table in his box, he can change ip and route to that ip can freely go out. These tools are "ifconfig, route , ip , iptables". So these can exist, firewall is guard ? No,No.
do what you can do.
hurtsman( wcpwcp@263.net)
Nov. 28,2001, China.
|
|
|
12-01-2001, 05:15 AM
|
#2
|
Moderator
Registered: May 2001
Posts: 29,415
|
Hmm. You mean like using it as a form of "ZoneAlarm" type fw? And how did you test what, and did you test it all as a user or as root?
Maybe you should tell us some more.
|
|
|
12-02-2001, 05:14 AM
|
#3
|
LQ Newbie
Registered: Nov 2001
Posts: 12
Original Poster
Rep:
|
what i mean is so. If you are in a LAN and LAN give some ip to freely browse web(using port 80),all setup is in firewall using ipchains,not squid. If you change ip adress of your box, then you
can also browse web(using port 80). If one can freely change his ip address ant route tables, how do firewall guard you?
hurtsman
Dec,2,2001
|
|
|
All times are GMT -5. The time now is 04:48 AM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|