|
Posted by arja on May 14, 2007, 7:26 pm
If you were Registered and logged in, you could reply and use other advanced thread options >
>> Hi all,
>> I have a firewall in the USA used for remote access by a
>> small
>> group of sales people. These users roam all over the USA and
>> access
>> this firewall from different locations, hotels/local dial up
>> ISP
>> numbers, hot spots etc. Is there an access list which I can
>> apply to
>> my firewall which will restrict access to the firewall to IP
>> addresses
>> sourced from the USA only? It would be too much to hope that
>> this is
>> a contiguous block of address but how unwieldy is it?
>> As always your help is appreciated.
>> Regards,
>> FWS
>
> This item was discussed at length in the html group a month or
> two ago. The consensus there was
> 1 - There is no single range for the US, or any other country.
> Blocks are
> assigned as needed, somewhat at random.
> I would suspect that there would be several hundred, perhaps
> thousand, list segments in which you would find US service
> providers.
> 2- Some companies operate internationally, so for example an
> access site in Canada may have a 'US' listed source.
> 3 - You can get around this using proxy servers, so you can
> appear to be anywhere that there is an open proxy.
>
> There are other forms of security which will work much better.
> Consider implementing security in the server applications that
> they would be accessing.
Wanna add something, most of the shit originates in the US.
I know some people won´t like this statement but the truth aint
nice.
arja
| 
XML site map