On Mon, Dec 18, 2000 at 09:30:25AM +0100, Robert Olsson wrote:
> Are there some sort of guidelines on what should be blocked on an
> Internet-router? RFC 1918 addresses and TCP/UDP-ports 137-139 are of
> course well-known,
in addition to that spoofing filters. Pevent IP Addresses which do not
belong to you from leaking out your network. And prevent addresses which
belong to your internal network from coming (as source address) from the
outside.
In addition to that disalow broadcast and network .255 and .0 targets into
your system.
You should not add aditional rules to the border router, unless it is part
of your Firewall Installation.
Greetings
Bernd
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
