Security Basics: Re: What is more secure?

[blackhat <phazex86 () gmail com>]

are you asking if it's better to use a port forwarding capability of a
router, or sending off internal ip addresses, cause if that's the case
I would stronly suggest port forwarding. One: most routers don't allow
people outside of the network to specify which internal IP the data is
to be sent to, because this would completely throw off the dhcp
functionality alltogether.

Hope this helps


On Thu, 24 Feb 2005 11:05:08 +0200, Tomas <s.tomas () gmail com> wrote:
> Hello all,
>
> I'd like to ask you, as guys who know a lot of about security, this
> question: what is more secure when dealing with web servers and public ips.
> Is it more secure to give all of your public ips directly to a web server
> and filter traffic with firewall, or is it better to give all public ips to
> a firewall and only redirect http and https ports to internal web server?
>
> (Sorry for my English, I know it's not perfect).

-- 
There are two major products that came out of Berkeley:  LSD and UNIX.
We do not believe this to be a coincidence.  ~Jeremy S. Anderson