Netgear portscanning me?

Netgear portscanning me?
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Networking Firewalls    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
Netgear portscanning me? Tam 09-03-2007
Posted by Volker Birk on September 5, 2007, 2:37 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
> Any PC on your LAN that does not have a software
> firewall is vulnernable if any other machine gets infected with a WORM
> or gets hacked. It's that simple.

It's just simply wrong.

Yours,
VB.
--
"Es muss darauf geachtet werden, dass das Grundgesetz nicht mit Methoden
geschützt wird, die seinem Ziel und seinem Geist zuwider sind."

Gustav Heinemann, "Freimütige Kritik und demokratischer Rechtsstaat"

Posted by Sebastian G. on September 6, 2007, 1:51 am
If you were  Registered and logged in, you could reply and use other advanced thread options
Chuck wrote:


> Arguments? Sure. Any PC on your LAN that does not have a software
> firewall is vulnernable if any other machine gets infected with a WORM
> or gets hacked.


Not mine, neither any I have configured. Why should it?

> Remember that DNS corrupting worm from about 2 years ago?

I don't remember running an unpatched Microsoft DNS server. I can only
remember running an always patched and well-secured BIND, and that's just
because of my special needs.

> An awful lot of network admins learned the hard way

> about double firewalling that day didn't they?


No, they didn't.

> A simple google of "is double firewalling a standard industry practice"
returns
> over a million hits.


A search for "kill all jews" also returns over a million hits. You command, Sir!

Posted by Juergen Nieveler on September 6, 2007, 4:19 am
If you were  Registered and logged in, you could reply and use other advanced thread options

> Double firewalling is standard industry practice. Do you disagree? If
> so I hope you are not working as a network administrator.

Host-based packet filters are usually only used on machines that
sometimes get connected directly to the Internet (Laptops, usually).

The only other instance of "double-firewalling" I know off in the
industry is a firewall with a DMZ between two packet filters - not to
be confused with any "desktop firewall".

"Desktop firewalls" usually are a support nightmare, as they prevent IT
from doing maintenance on the machines quite often (especially if the
user managed to screw around with the rules again), and offer no real
benefit for normal workstations.


Juergen Nieveler
--
Women are like watches: The finer the movement, the better the time

Posted by john toynbee on September 6, 2007, 6:21 am
If you were  Registered and logged in, you could reply and use other advanced thread options
On Thu, 06 Sep 2007 08:19:51 +0000, Juergen Nieveler wrote:

>
>> Double firewalling is standard industry practice. Do you disagree? If
>> so I hope you are not working as a network administrator.
>
> Host-based packet filters are usually only used on machines that
> sometimes get connected directly to the Internet (Laptops, usually).
>
> The only other instance of "double-firewalling" I know off in the
> industry is a firewall with a DMZ between two packet filters - not to be
> confused with any "desktop firewall".
>
> "Desktop firewalls" usually are a support nightmare, as they prevent IT
> from doing maintenance on the machines quite often (especially if the
> user managed to screw around with the rules again), and offer no real
> benefit for normal workstations.




Double firewalling (hardware + software) is recommended by US-CERT:


http://www.us-cert.gov/reading_room/HomeComputerSecurity/

http://www.cert.org/homeusers/goalof_computersecurity.html

http://www.us-cert.gov/reading_room/before_you_plug_in.html

Posted by Wolfgang Kueter on September 6, 2007, 8:56 am
If you were  Registered and logged in, you could reply and use other advanced thread options
john toynbee wrote:


> Double firewalling (hardware + software) is recommended by US-CERT:

The correct use of a proper hardware firewalling device like

http://www.knipex.de/index.php?id=783&L=0&grpID=24&ukat=kabel07

makes any software definitely unneccessary.

Wolfgang

Similar ThreadsPosted
Netgear FVS318 and Netgear (ProSafe) VPN Client problem through firewalls July 15, 2004, 9:17 am
Netgear FVS114 with Netgear DG814 with Single IP Address February 26, 2007, 7:48 pm
How did netgear do that? December 5, 2004, 6:30 pm
Netgear VPN April 19, 2007, 7:54 am
NETGEAR WGT 624 Log Viewer? November 6, 2004, 2:06 pm
Netgear FVS338 April 25, 2005, 7:52 pm
Netgear FR114P May 21, 2005, 8:19 pm
Netgear FR114P` September 5, 2005, 11:11 pm
netgear fsm7326 September 14, 2005, 8:16 am
NetGear FVS124G April 6, 2006, 9:47 am

The site map in XML format XML site map

Contact Us | Privacy Policy