Re: Linux firewall vs Windows and Hardware based firewalls

[Ron Johnson <ron.l.johnson@cox.net>]

On Sun, 2003-08-03 at 01:50, Alvin Oga wrote:
> hi ya
> 
> On Sun, 3 Aug 2003, David Fokkema wrote:
> 
> > On Sat, Aug 02, 2003 at 09:16:54PM -0700, Paul Johnson wrote:
[snip]
> f) if you allow vpn from home and wireless access to internal servers
>    than you've got some serious "network security policy and enforcement"
>    problems

Not as much as you might think.

On my work-from-home computer (WFH), which, unfortunately, is Win2k,
there are 2 NICs, 1 for the outside world (that is connected to the
cable modem via a switch), and 1 for the internal LAN.

When I fire up the VPN s/w (which I configured to use the "outside 
NIC"),  it disables the "inside NIC", thus closing off a bad security
loophole.

-- 
+-----------------------------------------------------------------+
| Ron Johnson, Jr.        Home: ron.l.johnson@cox.net             |
| Jefferson, LA  USA                                              |
|                                                                 |
| "I'm not a vegetarian because I love animals, I'm a vegetarian  |
|  because I hate vegetables!"                                    |
|    unknown                                                      |
+-----------------------------------------------------------------+