[thelist] FTP, IP Filtering, and Firewalls
Ken Schaefer
ken at adOpenStatic.com
Sat May 29 09:02:11 CDT 2004
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
From: "Joshua Olson" <joshua at waetech.com>
Subject: RE: [thelist] FTP, IP Filtering, and Firewalls
: > -----Original Message-----
: > From: Michael Pemberton
: > Sent: Friday, May 28, 2004 11:42 PM
: >
: > Many firewalls on the market today will let you work with ranges of
: > ports instead of individual ports.
:
: Michael,
:
: You are exactly correct. I wasn't clear in my original post,
: but I'm deploying a "defense in depth" by utilizing the IP
: Filtering that is built into MS Windows Servers 2000 and
: 2003 as well as an external firewall. It's awful nice to have
: filtering on the server itself, but the functionality is still a
: bit immature, or so it seems, as it doesn't allow to open
: up port ranges, only individual ports.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Are you talking about the TCP port filtering that's available via the
Network connection properties? If so, that's a hold over from NT days. I
believe the "correct" way to do this now is via IPSec.
Cheers
Ken
More information about the thelist
mailing list