Re: [Quickfixj-users] Seeking Advice on Implementing QFJ Acceptor with Internet Connectivity

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

Hi Felipe,

at first I would advise to use the most current version 2.3.1 but I assume you are doing that anyway. Former versions contain a nasty bug which an attacker could use to DOS your FIX connection.

There also is the AllowedRemoteAddresses config but since you are using a firewall it probably is not needed.

And last not least there is a white paper which I recommend reading:
https://www.fixtrading.org/packages/fix-security-white-paper-v1-9/
But from what I remember you are planning to do the best practices from that document already.

Best regards
Chris