Upon labeling the inside and outside interface on a PIX (via setup routine), rules prohibiting external -> internal traffic are enabled (due to default security levels). I believe FW1 also, by default, denies all traffic via default kernel rules and the implicit drop rule.
-Tate [EMAIL PROTECTED] wrote: > >Hello. > >Correct me if I'm wrong but FW1 with NO rules defined (when installing the FW), >allows all traffic to pass... > >I'm not familiar with Cisco PIX, but is that the same case? > >Regards > > >*******************Internet Email Confidentiality Footer******************* > > >Privileged/Confidential Information may be contained in this message. If you >are not the addressee indicated in this message (or responsible for delivery of >the message to such person), you may not copy or deliver this message to anyone. >In such case, you should destroy this message and kindly notify the sender by >reply email. Please advise immediately if you or your employer does not consent >to Internet email for messages of this kind. Opinions, conclusions and other >information in this message that do not relate to the official business of my >firm shall be understood as neither given nor endorsed by it. > > > >
