Hi all I'm currently in a Watchguard training. I'm going to make the WCP Certificate.
The trainer told me, that the "Drop-In configuration" (ProxyARP DMZ) is less secure than the routed DMZ. I didn't say anything and thought "Uh, really? Why?". Is a ProxyARP DMZ less secure than a routed or staticNAT DMZ? Are there even any security related differents? She told me, that staticNAT with a private DMZ is the better solution if you want to save public IP's. I don't think so. I think I run into problems with special applications/protocols if using staticNAT (passiveFTP, PPTP?) Discussion is opened.... --- Sandro Minola | LEAF Developer (http://leaf.sourceforge.net) mailto:[EMAIL PROTECTED] | mailto:[EMAIL PROTECTED] http://www.minola.ch | http://leaf.sourceforge.net/devel/sminola _______________________________________________ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
