SunScreen 3.1 Installation Guide

Stealth Mode Overview

SunScreen operating in stealth mode acts much like a bridge in that no IP interfaces are exposed to the public or private network, and packets are transparently filtered by the Screen. When operating in stealth mode, the firewall cannot be directly attacked except by a denial of service attack. The Screen cannot be seen or detected through traceroute or similar network tools.

Before you begin, configure only the network interface that you will use for remote administration. See the documentation accompanying the Solaris operating environment, if needed.


Note -

In this procedure, you are asked if you want to harden the Screen. Hardening is optional and if chosen, is an automated removal of Solaris files and packages that might otherwise make the Screen vulnerable to an attack. Once you have hardened your Screen, it becomes a dedicated firewall and the machine cannot be used for any other purpose without first reinstalling the Solaris operating environment.