"Maness, Drew" wrote:
>
>
> But today firewalls protect the IP stack.
While they are running, yes. You can cause the software to crash,
often leaving the machine, and the network, exposed. This is one
of the big problems with a software firewall.
> And most people know that a proxy
> is not a firewall. So this hardware based is better than software based
> stuff does not ring true.
>
Don't tell this to Axent... Raptor is an application proxy firewall,
and a right good one at that. I think the main problem is that not
many people actually understand what an application proxy is, nor do
they understand how one works. Also, the definitions are a bit mixed
by the vendors...
>From the dictionary:
Firewall.
Computer Science. Any of a number of security schemes that prevent
unauthorized users from gaining access to a computer network or that
monitor transfers of information to and from the network.
Proxy.
A mechanism authorized to act for another; an agent or a substitute.
Looking at it from this muddle, you can call many firewalls proxy
servers, and most proxy servers firewalls. My rule has always been
to be strictly technical... there are Layer 7, or application level
gateways, and there are layer 2, circuit level gateways. Figuring
out where a statefull inspection scheme like Checkpoint fits in is
left as an excercise...
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=3213&t=2878
--------------------------------------------------
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
