RE: Non-conventional implicit rules !!!

From: Nawaz, Ajaz (Ajaz.Nawaz@bskyb.com)
Date: Fri Dec 09 2005 - 09:10:21 GMT-3

• Next message: Schulz, Dave: "RE: switchport block question"
• Previous message: john matijevic: "Re: Network Design Question"
• Maybe in reply to: Serge N'GBESSO: "Non-conventional implicit rules !!!"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Can you please elaborate some more in relation to the ftp question?

Ajaz Nawaz

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Serge N'GBESSO
Sent: 09 December 2005 11:52
To: ccielab@groupstudy.com
Subject: Non-conventional implicit rules !!!

Correct me if i'm wrong.
  =>Router >> match Ftp traffic w/ only tcp/21
  =>PIX>>inbound traffic other than TCP&UDP must be explicitely permitted,
ICMP, ESP ...
  =>Router>>IPSec between Router/Client must have authorizaton set to build
the tunnel
   
  Please comment and add thx.

Serge R. N'GBESSO
serge.ngbesso@bnpparibas.com
Security Consultant
CCDA, CCSP, CCIE:Security,
Certified Etichal Hacker.
www.1000club.com/club/japon/

                
---------------------------------
 Appel audio GRATUIT partout dans le monde avec le nouveau Yahoo! Messenger
 Tilichargez le ici !

• Next message: Schulz, Dave: "RE: switchport block question"
• Previous message: john matijevic: "Re: Network Design Question"
• Maybe in reply to: Serge N'GBESSO: "Non-conventional implicit rules !!!"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Mon Jan 09 2006 - 07:07:50 GMT-3