Johan wrote:
Hi list,
Kindly is there a way that I can prove externally that suse 9.2 and suse 9.3 firewall on the gateway is keeping the not so welcome visitors out?
No, there is no such thing as a fool-proof firewall. You can only check if the ports you want to deny to external access are indeed closed. Use nmap from an external host for that purpuse. Also check if the internal access to the internet has been set according to the agreed rules. The Ports you do allow are the holes in your armor. See to it that you limit access to allowed services as much as possible. If possible restrict access to the list of clients/ip addresses that are known to you. If not possible think about vpn access for the clients. Most internal networks are cracked by circumventing the firewall and attacking a less protected front. Think about an infected document, a password some careless user lets slip or laptops brought in from the outside.
I ckeck internally with chkrootkit and rkhunter if such visitors are already in hiding.
I would rather them be outsiude.
Wouldn't we all rather? (^-^) Sandy -- List replies only please! Please address PMs to: news-reply (@) japantest (.) homelinux (.) com