RE: FN-FORUM: Firewall's ... again

date posted 25th June 2003 15:04

On Wed, 25 Jun 2003, Mark Anderson wrote:

> Just had a quick look on the ipcop site and there are certainly links and
> info about setting it up to allow web servers and email servers to work
> behind it.

Yes, that's what I was referring to when I said:

"Both are intended for typical SoHo environments where one might allow one
or two services (e.g. SMTP and HTTP) in"

What the OP wants to do (I think) is prevent his /internal/ users from using
instant messaging apps, IRC, FTP, Quake, P2P etc. by only allowing
connections to port 80 of Internet hosts and the appropriate ports for his
mail server and DNS servers.

This is quite a common configuration in larger organisations, once the PHBs
get a bee in their bonnet about the drones "wasting time on the intarweb".

> HTH
> Mark

Best Regards,
Alex.
--
Alex Butcher Brainbench MVP for Internet Security: www.brainbench.com
Bristol, UK Need reliable and secure network systems?
PGP/GnuPG ID:0x271fd950