As long as you rely on packet filtering only, then anybody that meets the filter criteria can sneak whatever they want through the firewall on an open port.
The answer would be to build a stateful inspection engine for soap-over-insertprotocolhere, and then use that to verify the legitimacy of teh soap messages. A daunting task, since a firewall vendor is going to have trouble validating code that you are writing!
Slashdot Mirror
As long as you rely on packet filtering only, then anybody that meets the filter criteria can sneak whatever they want through the firewall on an open port.
The answer would be to build a stateful inspection engine for soap-over-insertprotocolhere, and then use that to verify the legitimacy of teh soap messages. A daunting task, since a firewall vendor is going to have trouble validating code that you are writing!
If it was supposed to be fun, you would be paying them.
you can outsource the viseo part of your website to the feedroom. http://www.feedroom.com