On Thu, Dec 06, 2001 at 04:30:28PM +0100, Johnston Mark wrote: > Just a quick explanation ..... each interface on a pix firewall is assigned > a number or security rating. By default external is given a rating of 0 > (most unsecure) and inside a rating of 100 (most secure). The pix works by > allowing traffic from a zone of higher security to a lower, but never from a > lower to a higher unless you specifically enable it.
Since this means most likely "connection attempt" not "traffic" there is no gain in that. Consider a POP-3 or HTTP Connection from LAN to Internet which will fetch malware/virus. The direction of connection attempts are not related to information flows. Greetings Bernd _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
