Hi Brian,
> Last time I used socks, I wasn't impressed. It takes a lot of very careful
> configuration to make it secure. Properly configured it is perfectly
secure
> though. (Translation : Do A LOT of reading up on it)
I run a real network and also a private IP address range as well. The
firewall will not accept those IP addresses from the net so noone can spoof
the addresses.
Socks5 is also configured to allow connections only from those address
ranges and the 1080 port is similarly firewalled off from outside.
I did end up putting it on the firewall machine and allow any source ports
1024+ to talk to my firewall port 1024+ but only in replies and not to
initiate connections. I love IPChains 8)
> Why don't you let me/the list know which apps you need to use with your
> firewall that are causing problems. Most popular applications already have
> fixes/workarounds that will allow you to use them with ipchains.
Mostly ICQ. The problem is I have some machines using ICQ being masqueraded
and some on real addresses. ICQ is a real pain to put behind firewalls.
Thanks for your reply
+-----------------------+---------------------------------+
| Peter Kiem | E-Mail : <[EMAIL PROTECTED]> |
| Zordah IT | Mobile : +61 0418 798 121 |
| IT Consultancy & | WWW : www.zordah.net |
| Internet Hosting | ICQ : "Zordah" 866661 |
+-----------------------+---------------------------------+
The Rules Have Changed...Be paid to Surf the Web!
http://au.nz.alladvantage.com/go.asp?refid=OMP682
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
