[Techtalk] Good firewall configuration tool for debian
Rudy L. Zijlstra
rudy at edsons.demon.nl
Fri Apr 9 21:49:41 EST 2004
Devdas Bhagat wrote:
>On 09/04/04 20:22 +0200, Rudy L. Zijlstra wrote:
>
>
<snip>
>Tsk, Tsk. What a lack of header reading clue. See the originating IP.
>__
>
>
<shrug> from apnic.net ( 202.88.170.34) Physical location has little to
do with apparent attitude.
>>IPv6 aware. I love to have managed switches, but hate to pay the price
>>when new. So i buy them second hand.
>>
>>
>You mean they won't handle IPv6 arp? The management network can stay
>IPv4. Of course, you do get cheaper managable switches as well.
>
>
Which was meant as an example. Better one would have been a wireless AP.
Many of those don't yet support IPv6.
This type of solution is not for the average home network. And Carla was
apparently speaking about a small home network.
><snip>
>
>
>><shrug>. like VPN, can be done over NAT. Though possibly not all VoIP
>>packages support it. But only 2 years ago not all VPN packages supported
>>NAT, now al of them do. And NAT has learned about VPN.
>>
>>
>Painful though. My million dollar question though is: If Carlawants to
>call you from behing her NAT to a device which is also NATted, how does
>she do it?
><snip>
>
>
By using proper port forwarding on the (NAT) firewall. Which should be
done anyways if you are designing your network properly.
>>>ISP TOS?
>>>
>>>
>>>
>>>
>>TOS == Type Of Service, at least in network lingo. What is your intention?
>>
>>
>Terms Of Service. Those pesky legal things which prohibit the running of
>servers on consumer grade DSL/cable.
>
>
And of often ignored until the ISP gets irritated. And sometimes the ISP
advises you how to violate...
<snip>
Rudy
More information about the Techtalk
mailing list