[Dshield] Multi- Honed Servers

John Groseclose iain at caradoc.org
Tue May 28 20:16:28 GMT 2002


* rhilliard at t-systemsus.com <rhilliard at t-systemsus.com> [020528 13:00]:
> This is part of the homework. ;-)
> 
> I getting a lot of requests to put NIC's into servers that will actaully 
> bypass the firewalls. Thanks for the point in the right direction.

Maybe it's just me, but doesn't that completely defeat the purpose of a firewall?

Assuming a non-routing server with NICs on the external network and NICs on the internal network, it becomes rather trivial to leapfrog the firewall and have complete access to the internal network...




More information about the list mailing list