Bill Wilson wrote: > Best bet is to allow the well-known connection ports, then watch the > traffic to see what happens. Maybe start by allowing all ports > 1024<x<5000 and see if they tend to get used. You might be able to > trim > the range a bit if it's important. > > In general, making firewalls work with quake means that you have to > abandon either quake, or the "deny all except what I specifically > allow" > policy. Instead you have to pretty much allow such a wide range of > ports > that you're really getting into an "allow all but what I specifically > deny" policy. Which if you ask me is perfectly good. :) Me > personally, > I filter out NFS, NIS, radius, and that's about it. I'm not a big > firewall fan... :) ++ Ascend Users Mailing List ++ To unsubscribe: send unsubscribe to ascend-users-request@bungi.com To get FAQ'd: <<A HREF="http://www.nealis.net/ascend/faq">http://www.nealis.net/ascend/faq</A>> </PRE> <!--X-MsgBody-End--> <!--X-Follow-Ups--> <!--X-Follow-Ups-End--> <!--X-References--> <!--X-References-End--> <!--X-BotPNI--> <HR> <UL> <LI>Prev by Date: <STRONG><A HREF="msg11350.html">(ASCEND) Nat and IPX</A></STRONG> </LI> <LI>Next by Date: <STRONG><A HREF="msg11348.html">Re: (ASCEND) Secure Access Firewall,</A></STRONG> </LI> <LI>Prev by thread: <STRONG><A HREF="msg11348.html">Re: (ASCEND) Secure Access Firewall,</A></STRONG> </LI> <LI>Next by thread: <STRONG><A HREF="msg11355.html">Re: (ASCEND) Secure Access Firewall,</A></STRONG> </LI> <LI>Index(es): <UL> <LI><A HREF="maillist.html#11349"><STRONG>Main</STRONG></A></LI> <LI><A HREF="thrd263.html#11349"><STRONG>Thread</STRONG></A></LI> </UL> </LI> </UL> <!--X-BotPNI-End--> <!--X-User-Footer--> <!--X-User-Footer-End--> </BODY> </HTML>