I have been dicussing a dilema with a few other co-admins and we are quite intrigued by something. I will throw it out here and see what the community has to say.

The background:
We are basically and MS and Netware shop. There are 3 admins/support guys. We also belong to a much larger IT structure - have to deal with them on all backbone/demark issues but we operating stand alone for anything pertaining to internal building users/apps/file servers.

The central Info Sec div. have deployed a firewall product. It is Unix/FreeBDS. They set it up and deploy it to us with instructions on how to tweak.

The dilema:
None of us are Unix guys. As stated above, we work on Netware and MS Products. We were working from their readme trying to allow a subnet to enter thru firewall - we saw all this wierd stuff.

And that got us to thinking, if this firewall ever gets "hacked", how would you know that it is hacked?