[KLUG Members] Firewall/Cisco oddities.

[Sanjay Chigurupati]

Hi,
Sounds quite interesting.I am interested in netowrks
and if I wanted to get experience of this kind, how
should I go about it? I am about to finish my Master's
in Computer Science.

Thanks,
Sanjay


--- Adam Bultman <adamb@glaven.org> wrote:
> Okay.  I just switched from an OpenBSD firewall to
> an IPtables firewall.
> Here's the deal.
> 
> My firewall sits behind a Cisco 700 series router. 
> The router itself has
> telnet and finger running ( I haven't turned it off
> yet, need to remember
> how) but for the most part, it blocks almost all
> ports.  I have to
> specifically turn ON port forwarding.  When I had my
> openBSD firewall,
> only a few services showed up:  finger, telnet,
> smtp, SSH.
> 
> Well, I switched to a linux box recently, and now,
> somehow more ports are
> showing up. Either something else has gone on, I'm
> not sure, but now more
> ports show up.  I'm baffled.  I'm writing more
> firewall rules (currently
> it doesn't do much) but since the router SHOULDNT be
> port forewarding,
> there has to be some mistake. Has to be.  Currently,
> smtp, ldap, and 1002
> show up as open, but I can ssh in, and go to my web
> page. this is bizarre.
> 
> I'm using nmap to scan, FYI.
> 
> adam
> 
> --
> Adam Bultman
> adam@glaven.org
> [ http://www.glaven.org ]
> 
> _______________________________________________
> Members mailing list
> Members@kalamazoolinux.org
>



__________________________________________________
Do You Yahoo!?
Try FREE Yahoo! Mail - the world's greatest free email!
http://mail.yahoo.com/