Phant0m + Enhanced ruleset(combo)??

Discussion in 'LnS English Forum' started by dpt.larry, Sep 2, 2007.

Thread Status:
Not open for further replies.
  1. dpt.larry

    dpt.larry Registered Member

    Joined:
    Mar 6, 2007
    Posts:
    14
    Hi,

    I'm not a firewall specialist, but I wonder if it's OK if I were to 'combine' phant0m's ruleset with the default enhanced ruleset, will that affect LnS security? Will it create any security holes?

    Also if there was a 'double' ruleset, will that affect anything?.....thanks in advance =)
     
  2. bombing

    bombing Registered Member

    Joined:
    Aug 7, 2007
    Posts:
    32
    Location:
    Lisbon
    I'm no expert either but I'd guess that the point of having Phant0m's rule set is precisely not to combine - it's a package to be used as is or to tweak according to your personal needs. Cliemenole also has his own set of rules if you'd care to check them out.
     
  3. dpt.larry

    dpt.larry Registered Member

    Joined:
    Mar 6, 2007
    Posts:
    14
    Thanks for mentioning Cliemenole's ruleset bombing, I will keep that in mind =)

    Anyway back to my question, does anyone else have an answer or there own opinion/thoughts?

    ps, happy labor day =)

    regards,
    larry
     
  4. Climenole

    Climenole Look 'n' Stop Expert

    Joined:
    Jun 3, 2005
    Posts:
    1,640
    Hi dpt.larry :)

    The Phant0m rules set is a complete rules set as much as the other...

    If you combine 2 rules set there will be duplicate rules and the position of the rules in the list will be illogic! Don't do that !

    It's important to understand that the relative position of a rule in the list have an impact on all the rule set.

    In all rules set based firewall, the rules are examined from the first of the list until a rule criteria matched the characteristics of the checked packet. If the criterias and the packet characteristics matched then that rule is apply to this packet.

    There's a logic under each rules set and this must be respected for all new rules created with this rules set...

    This is the same for the LnS ehanced rules set, Phant0m rules set and climenole rules set.

    :)
     
Thread Status:
Not open for further replies.