Hi Marc,
> basically if you have set up hide nat only, you do
> not have to
> concern any external access to your local network at
> all.
well, what about a man-in-the-middle attack :)
> whatever, you got a dmz and ordinary offical servers
> running
> there.
yes, and they are accesible from the Internet with
ext-IPs assigned and so they are from the internal net
with int-IPs assigned (that's what I mean by saying
eitherbound NAT), so nothing would reveal the DMZ
range out.
> - - dmz: local net + offical ip addresses to
> external world
> - - internal: _all_ internal networks
> - - external: others
oh yeah.. that seemed to be natural to me, but with
this I was getting inbound traffic to DMZ dropped
(first one accepted and the second dropped)
> best regards from frankfurt/germany,
> marc.
viele gruesse from midwest!
Dominik
=====
Your rifle is only a tool
it is a hard heart which kills..
<full metal jacket>
--------------------------------
Dominik M. Miklaszewski
[EMAIL PROTECTED]
__________________________________________________
Do You Yahoo!?
Yahoo! Mail � Free email you can access from anywhere!
http://mail.yahoo.com/
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
