I have a quick question re: port issues on a Stateful Inspection firewall. Ie fw-1
(for simplistic reasons i am assuming no NAT!)
Ok i am on my companys LAN and want to connect to for eg www.bbc.com
, I understand that I make a connection to their web server on TCP port 80. And their web server connects back to my machine on a random high end port.
My question is how do FW rules apply... to this.. ie let out traffic for port 80 and anything back in????????? (ie to connect to my machine on the high range port) therefore do the rules apply goingout/coming in? or does the firewall dynamically open the port coming back in?