On Sun, 12 Mar 2000, Unknown wrote:
> At 04:07 PM 3/8/00 -0500, John Adams wrote:
> >Filtering router = barely any isolation, just drops packets and you have
> >to let large sections of the port space back in so connections work
> >(unless using the established keywords under cisco, but a router and
> >filtering SHOULD NOT be your first line of defense.)
>
> Actually, Cisco ACL's SHOULD be the FIRST line of defense, and, hopefully,
> NOT the ONLY line of defense. Defense in depth is a great concept.
You know, looking back I admit that I wrote that sentence completely
wrong.
s/first line/only line/g
-john
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
