"Christopher C. Petro" wrote:
>
> Along this vein, anyone know anything about Sonic Firewalls?
> Anything I should be scared of, or watch out for? We have one here
> that I am responsible for, but I didn't choose it, and don't know
> much about it.
I only know a little about it, and it's from a quick independent
survey of firewalls.
The issues I discuss could of course be related to a single
minor version, that was quickly fixed.. I don't know :-)
Apparently, its throughput is limited to app. 2 mbps.
If you packet storm it at 10 mbps, using large illegaly-
fragmented pings, it'll crash.
After this crash, it will not come back up completely again,
the interface that you attacked will have ceased to function.
Pulling the power plug and sticking it back in will not help
the above condition.
Since its logs are stored in RAM, everything is lost if
the firewall is made to crash.
I have no idea as to its filtering capabilities, but
the above denial-of-service conditions in combination
with the loss of auditing (who made it crash?) would
make me think twice.
I reiterate: I have no reason to distrust the above
issues - I trust my source, but I do not know the
vendor's response to them.
Regards,
Mike
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
