July 9th, 2009, 06:07 PM
heavyfreak , forget what I said in my PM. I do not think I am the one to help.
But I still think you should either remove the post with the rules in it, or at least obscure the IP addresses as in 12.233.x.x
That is a common and accepted way to post such information publicly.
I know, I am paranoid!
But when I see things like
Allow HTTPS  WAN1 Any 192.168.169.249 ~ 192.168.169.249 Always
and both the FTP and HTTP boxes are on your LAN, ..... I cringe. They belong in a DMZ.
Allow FTP  WAN1 12.233.x.x ~ 12.233.x.x 192.168.169.251 ~ 192.168.169.251 Always
( is 12.333.x.x your public IP address? If it is then any rules that follow with less priority to deny access are useless! )
IMHO, I really think you need to sit down with someone proficient in network design and security, tell them what you have, what you need, and let them set things up for you from scratch!
Maybe dinowuff is available for hire?
" And maddest of all, to see life as it is and not as it should be" --Miguel Cervantes
By Tiger Shark in forum The Security Tutorials Forum
Last Post: May 29th, 2004, 04:55 PM
By Lone1337 in forum AntiOnline's General Chit Chat
Last Post: August 23rd, 2002, 04:16 PM
By smirc in forum AntiOnline's General Chit Chat
Last Post: June 7th, 2002, 04:03 PM
By zigar in forum AntiOnline's General Chit Chat
Last Post: February 22nd, 2002, 01:24 PM
By NUKEM6 in forum Non-Security Archives
Last Post: February 3rd, 2002, 10:28 PM