Cover all interfaces (including lo0) with ipfilter. You catch all outgoing
packets which you don't want let go out on external interface.
Note if the host is compromised, the ipfilter rule itself can be compromised.
To overcome this problem, your host should run on securelevel 2 (or higher).
horio shoichi
Gene Lee wrote:
>
...
>
> The current problem is that I need to make sure there is no leakage of
> internal traffic through the Internet NIC. I also need to be assured that
> the NIC does not inadvertently respond to broadcast traffic despite it not
> having an IP address. Does anyone know of any way anyone can make this box
> respond from the Internet using my configuration? Any other hardening
> techniques to make this more secure in this temporary configuration?
>
> --
> Gene Lee
> [EMAIL PROTECTED]
> [EMAIL PROTECTED]
>
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
