* Scheme Loh wrote on Sun, Nov 11, 2001 at 14:06 -0800:

In a nutshell, what is a DMZ?

demilitarized zone. It's a network with routable (non-RFC1918) IP addresses but behind a firewall. In the DMZ are the servers located, with offer services for the internet or wich are act as proxies for the internal hosts. An idea is to block all connections from the internal lan to the internet. By this, every connection must be relayed (i.e. by a proxy). An attacker needs to get a host in the DMZ to be able to attack the internal lan, since anythink else get blocked. To make the attack against the DMZ not easy, it's firewalled too. oki, Steffen -- Dieses Schreiben wurde maschinell erstellt, es trägt daher weder Unterschrift noch Siegel.

i get this message from one of my log messages Nov 13 19:27:20 cyclops named[351]: refused query on non-query socket from [192.168.1.22].1279 Nov 13 19:27:20 cyclops last message repeated 62 times

This one is from your nameserver: You seem to have configured it to not answer any queries from the internal 192.168.1 network. That's why it complains: It gets some. If you say that 192.168.1.22 is a webserver then it seems that the webserver somehow uses dns.

Nov 13 19:27:20 cyclops kernel: svc: unknown program 100000 (me 100021) Nov 13 19:27:20 cyclops kernel: svc: unknown program 100001 (me 100021)

Do an rpcinfo -p on both cyclops and the other machine that you tried to mount from or that mounted from cyclops. It seems to be HP/UX or Solaris.

what could it mead?

kenneth

Roman. -- - - | Roman Drahtmüller // "You don't need eyes to see, | SuSE GmbH - Security Phone: // you need vision!" | Nürnberg, Germany +49-911-740530 // Maxi Jazz, Faithless | - -