RE: PIX with no rules
From: Gary McKinney (gmckinney@megabits.net)Date: 01/14/02
- Previous message: Kevin Crichton: "Re: Running two software firewalls at a time"
- In reply to: Munkhbayar.B: "RE: PIX with no rules"
- Next in thread: Kleber S Oliveira: "RE: RE: PIX with no rules"
- Maybe reply: Kleber S Oliveira: "RE: RE: PIX with no rules"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Gary McKinney" <gmckinney@megabits.net> To: <security-basics@securityfocus.com> Date: Mon, 14 Jan 2002 12:56:29 -0500
Actually,
This is not quite true...
Most firewalls today are configured default to deny all connections
originating from the external (hostile) port while allowing some default
services to pass from the trusted side to the external side.
(The Watchguard firewalls are configured in this manner)...
Check the firewall docs to determine the actual default configurations....
Gary N. McKinney, WGCP
> -----Original Message-----
> From: Munkhbayar.B [mailto:munkhbayar@mobicom.mn]
> Sent: Thursday, January 10, 2002 8:25 PM
> To: nicholas.mckenzie@au.andersen.com; security-basics@securityfocus.com
> Subject: RE: PIX with no rules
>
>
> No.
> They all requires specific configuration for initial use.
> You should configure them all.
> Specially PIX.
>
> -----Original Message-----
> From: nicholas.mckenzie@au.andersen.com
> [mailto:nicholas.mckenzie@au.andersen.com]
> Sent: Wednesday, January 09, 2002 10:57 AM
> To: security-basics@securityfocus.com
> Subject: PIX with no rules
>
>
>
>
> Hello.
>
> Correct me if I'm wrong but FW1 with NO rules defined (when installing the
> FW),
> allows all traffic to pass...
>
> I'm not familiar with Cisco PIX, but is that the same case?
>
> Regards
>
>
> *******************Internet Email Confidentiality
> Footer*******************
>
>
> Privileged/Confidential Information may be contained in this message. If
> you
> are not the addressee indicated in this message (or responsible
> for delivery
> of
> the message to such person), you may not copy or deliver this message to
> anyone.
> In such case, you should destroy this message and kindly notify the sender
> by
> reply email. Please advise immediately if you or your employer does not
> consent
> to Internet email for messages of this kind. Opinions, conclusions and
> other
> information in this message that do not relate to the official business of
> my
> firm shall be understood as neither given nor endorsed by it.
>
>
>
>
>
- Previous message: Kevin Crichton: "Re: Running two software firewalls at a time"
- In reply to: Munkhbayar.B: "RE: PIX with no rules"
- Next in thread: Kleber S Oliveira: "RE: RE: PIX with no rules"
- Maybe reply: Kleber S Oliveira: "RE: RE: PIX with no rules"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
