Sorry for being so long silent here, my friends. My notebook is offline at the moment, after I had to switch back to my former drive to boot...ahem...Wintendo 2000 in an effort to entertain the troops (aka wife & kids) in the dark the night before last during the "outage." I haven't swapped drives back yet, as I was at a client all day yesterday (fighting with more furshlugginer Wintendo machines - drive upgrades & OS upgrades; one of the crazy things had a 420MB Maxtor drive in it, with a 12/94 build date! - it used to be an OS/2 station which ran non-dedicated Netware 4.10 for OS/2, and Boot Manager was still on the drive, even after the <sob><sob> move to NT 4.0 in 1999)...
Anyway,
On Fri, 15 Aug 2003 21:18:56, Charles_McCallister@compuserve.com wrote:
>BTW, what is
>dynamic packet filtering? Do you or anyone else know?
>
Stan has pointed out some great links, here. The Novell one is of particular interest to me, as my setups are pretty much as described in the AppNote. My Novell servers do DNS internally, and while I'm on the network, the nearest NetWare server is my DNS address (BTW, one doesn't need to have BorderManager installed to do such packet filtering, if there's a hardware firewall which does PAT (port address translation, or the routing of certain external IP ports to specific internal hosts). Can't beat the caching! In BorderManager installations (Novell's firewall/VPN/proxy cache product), I have the server doing DNS and port 53 blocked completely at the firewall to client access, so clients can't go to another DNS server even if they want to do so.
In the analog connection days - and interestingly, even at my Leesburg, VA townhouse, where I have ISDN for access - we used (and I still do, there) 3Com LAN modems (these come in two flavors: 56K analog and BRI ISDN). 3Com's operating model for these has them proxyng DNS requests (I don't think they have enough RAM to cache such data), so the clients point to the LAN modem as the DNS address.
Lewis
-------------------------------
Lewis G Rosenthal
Rosenthal & Rosenthal
via WebMail/2...powered by OS/2
-------------------------------
back to list