Re: risks of using a router instead of a firewall
From: Volker Birk (bumens_at_dingens.org)
Date: 14 Sep 2005 07:38:51 +0200
Doug Fox <email@example.com> wrote:
> I have installed a D-Link broadband DI-601 router for Internet access.
> I scanned the router using nmap, nessus, and superscan. They could not
> identify any open ports. In addition, according to D-Link, all D-Link
> routers block all incoming ports.
> In this scenario, is my network safe from DoS, DDoS, Buffer Overflow,
> teardrop, IP spoofing, etc. attacks.
Your network is safe then from any attacks, which attack servers/daemons
on your boxes behind that router, if the router does not have any extra
security holes, which open the possibility again to reach the boxes
behind the router (i.e. by attacking the stateful handling of protocols
This has nothing to do with other types of attacks.
-- "Es kann nicht sein, dass die Frustrierten in Rom bestimmen, was in deutschen Schlafzimmern passiert". Harald Schmidt zum "Weltjugendtag"