Re: Why you have hardware firewalls
From: Arthur Hagen (art_at_broomstick.com)
Date: 04/06/05
- Previous message: Arthur Hagen: "Re: Why you have hardware firewalls"
- In reply to:(deleted message) Leythos: "Re: Why you have hardware firewalls"
- Next in thread: MyndPhlyp: "Re: Why you have hardware firewalls"
- Reply: MyndPhlyp: "Re: Why you have hardware firewalls"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 6 Apr 2005 11:26:21 -0400
Leythos <void@nowhere.lan> wrote:
> On Tue, 05 Apr 2005 23:11:26 -0400, Arthur Hagen wrote:
>>
>> MyndPhlyp <nobody@homeright.now> wrote:
>>>
>>> FWIW, I got tired of all the attempts at hacking my exposed web site
>>> and took the shotgun approach blocking all the RIPE and APNIC
>>> networks I could identify. Things got quiet real quick. Some are on
>>> your list (marked "*"). I think this is the complete list (at least
>>> it was 5 months ago). All blocks are Class A (x.x.x.x/8).
>>
>> That seems like tossing the baby out with the bath water. I'm sure
>> you're going to curse your decision the next time you need to
>> download an Asus BIOS from Taiwan, or access BBC World News, or
>> something else :-)
>
> I think you misunderstand the block lists - those are inbound blocks,
> not outbound - this means you can still connect outbound to those
> countries, but they can't connect inbound.
Surely, for inbound non-return traffic one would block *everything* except
what is explicitly defined?
-- *Art
- Previous message: Arthur Hagen: "Re: Why you have hardware firewalls"
- In reply to:(deleted message) Leythos: "Re: Why you have hardware firewalls"
- Next in thread: MyndPhlyp: "Re: Why you have hardware firewalls"
- Reply: MyndPhlyp: "Re: Why you have hardware firewalls"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
