[ previous ] [ next ] [ threads ]
 
 From:  Denis Witt <witt at concepts dash and dash training dot de>
 To:  "Neil A. Hillard" <m0n0 at dana dot org dot uk>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] 10.000 firewall rules.
 Date:  Wed, 10 Jan 2007 23:42:54 +0100 
Neil A. Hillard schrieb:

> But then you have the problem of managing an alias with 10,000 IP
> addresses...

Maybe they could use some rules with an IP-Range. On the other hand, if 
10.000 PCs that are unlikely to be under your control get access to this 
application it may be not such a big problem to allow generall access 
and block other users by an authentication system.

Anyway 10.000 firewall rules (i don't think that this is a typo, maybe a 
misunderstanding what a firewall rule means) sounds very sick. There 
must be a better way.

-- 
Regards,
Denis Witt

--------------------------------------
Konzeption & Technik

CaT Concepts and Training GmbH
Amsterdamer Str. 216
50735 Köln

Fon   : +49 (0) 221 / 99 55 59 - 16
Fax   : +49 (0) 221 / 99 55 59 - 29
Mobil : +49 (0) 176 / 20 19 36 80

Mail  : witt at concepts dash and dash training dot de
Jabber: dwitt at jabber dot ccc dot de
--------------------------------------