This may sound totally dumb but please forgive me.
I am using Shorewall firewall for our network and I do not understand what difference it would make to route traffic from 1 port to another through the firewall. For instance, if traffic coming through port 80 were to be diverted to port 8080 why would this stop an attack on port 80? I know the user doesn't realize that he is being redirected but still 80 would be going to 8080 and I do not see this as being any different.
Currently the firewall states that:
DNAT net loc:xxx.xx.x.x tcp 80 - xxx.xxx.xxx.xxx
I was told to redirect to a different port, thus my question.
We are currently experiencing a denial of service and am trying to correct.
So the question is, what difference would it make if the ports were changed or am I getting the wrong information?
thank you
Bill
I am using Shorewall firewall for our network and I do not understand what difference it would make to route traffic from 1 port to another through the firewall. For instance, if traffic coming through port 80 were to be diverted to port 8080 why would this stop an attack on port 80? I know the user doesn't realize that he is being redirected but still 80 would be going to 8080 and I do not see this as being any different.
Currently the firewall states that:
DNAT net loc:xxx.xx.x.x tcp 80 - xxx.xxx.xxx.xxx
I was told to redirect to a different port, thus my question.
We are currently experiencing a denial of service and am trying to correct.
So the question is, what difference would it make if the ports were changed or am I getting the wrong information?
thank you
Bill
