Re: using boot-from-LAN to boot a Linux firewall
From: €®ik (no email)
Date: 10/23/03
- Next message: Henning Støverud: "WatchGuard SOHO 6 MUVPN-Client"
- Previous message: The Saint: "Re: Outbound ports"
- In reply to: n1pop_at_hotmail.com: "Re: using boot-from-LAN to boot a Linux firewall"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 23 Oct 2003 09:20:40 +0200
On 22 Oct 2003 11:42:52 -0700, the right honourable n1pop@hotmail.com
wrote:
>?®ik <> wrote in message news:<3rdcpvk3mpp2q3g6ej8n4cisbo1hocidj0@4ax.com>...
>> Would it be a good idea, from a security standpoint, to have a PC,
>> used solely as a firewall between internet and local net, boot from
>> LAN.
>> It would have no HD, no CDROM, no floppy and load all its stuff (eg.
>> Linux and Netfilter) from another machine on the local net.
>>
>> Don't know how to do it yet, but that's another matter.
>>
>> frgr
>> Erik
>
>My initial impression is that this is not a good idea. A firewall, in
>my opinion, should be as self-contained as possible so that it does
>not have to rely on some outside source to operate. I don't believe
>it is wise for a firewall to depend on the network it's trying to
>protect for the data it needs to function.
>
>I could be wrong, I've never done such a thing so I don't know what
>inherent risks are involved.
thank you.
sounds good.
Erik
- Next message: Henning Støverud: "WatchGuard SOHO 6 MUVPN-Client"
- Previous message: The Saint: "Re: Outbound ports"
- In reply to: n1pop_at_hotmail.com: "Re: using boot-from-LAN to boot a Linux firewall"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
