Re: NLB and Windows Firewall
- From: "Russ Kaufmann [MVP]" <russ@xxxxxxxxxxxxxxx>
- Date: Wed, 7 Jun 2006 12:15:14 -0600
"JayDubb" <jay@xxxxxxxxxxxxxxxx> wrote in message
news:44860BCB.3B3C714C@xxxxxxxxxxxxxxxxxxx
That's a shame. I'd never rely on it as the only defense (we use hardware
firewalls on every transit circuit at the border) but security is best
when
served up in layers.
Running the Windows Firewall on each host adds one more layer of
protection in
case a host inside the firewall gets compromised and tries to attack from
within. Leaving ONLY the service ports (21, 80, 443) open makes the
machine
no more vulerable to inside-the-firewall attacks than it is from the rest
of
the world.
You can use port rules in NLB to limit traffic.
--
Russ Kaufmann
MVP - Windows Server - Clustering
ClusterHelp.com, a Microsoft Certified Gold Partner
Web http://www.clusterhelp.com
Blog http://msmvps.com/clusterhelp
.
- Follow-Ups:
- Re: NLB and Windows Firewall
- From: JayDubb
- Re: NLB and Windows Firewall
- References:
- NLB and Windows Firewall
- From: JayDubb
- Re: NLB and Windows Firewall
- From: seth
- Re: NLB and Windows Firewall
- From: JayDubb
- Re: NLB and Windows Firewall
- From: Rodney R. Fournier [MVP]
- Re: NLB and Windows Firewall
- From: JayDubb
- Re: NLB and Windows Firewall
- From: Rodney R. Fournier [MVP]
- Re: NLB and Windows Firewall
- From: JayDubb
- NLB and Windows Firewall
- Prev by Date: Re: Simple Mirror Cluster
- Next by Date: Re: MNS Shared Resources
- Previous by thread: Re: NLB and Windows Firewall
- Next by thread: Re: NLB and Windows Firewall
- Index(es):
Relevant Pages
|
