[prev in list] [next in list] [prev in thread] [next in thread] 

List:       netfilter
Subject:    Re: iptables rules for cups printer discovery
From:       Grant Taylor <gtaylor () riverviewtech ! net>
Date:       2008-08-15 17:57:12
Message-ID: 48A5C479.9050509 () riverviewtech ! net
[Download RAW message or body]

On 08/15/08 11:28, Stephen Isard wrote:
> This is a large university department where students and visitors use 
> the lan.  The computing officers are highly competent and doing their 
> best to provide security, but, as you know, it's a constant battle.

Sounds like it is time to divide the different access networks up in to 
smaller pieces and route between them.  Make sure that you do some 
sanity checking (filtering) as part of the routing process too.  Try to 
help prevent spoofing as close to the edge as possible.  ;)

> This particular case involves udp.

*nod*

> Thanks for your advice.

You are welcome.



Grant. . . .
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
[prev in list] [next in list] [prev in thread] [next in thread]