1) Each vendor comes in as an extension of their "internal" network.
2) Some use FTP, some use TELENT, some use RLOGIN, some has combination of
these.
----- Original Message -----
From: <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
Sent: Monday, October 25, 1999 9:01 AM
Subject: RE: VLAN - a semi-firewall related question
> I have a couple of questions that would help in answering your question.
>
> 1. Do you get to assign all of the vendors IP addresses?
> 2. Do the vendors need to get to the same services on your network or
> different services?
>
> Without knowing the answer to these questions I would say that a small
Layer
> 3 switch might be usefull for you. Foundry sells a 24 port Layer 3 switch
> that might be what you need.
>
> -----Original Message-----
> From: Ivan Fox [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, October 21, 1999 5:26 PM
> To: [EMAIL PROTECTED]
> Subject: VLAN - a semi-firewall related question
>
>
> It is a semi-Firewall related question.
>
> A firewall for the Extranet allows, say 10 vendors, contractors, to
connect
> to it. There are two options that we can think of:
>
> Option 1:
> Have 10 NICs in the firewall. This option is clumsy, but it is secure in
> the sense that competitive suppliers cannot sniff each other's data.
>
> Option 2:
> A smarter approach, one says. Have an intelligent switch connecting to a
> NIC in the firewall. Each port of the switch is isolated, a VLAN
approach.
> Competitive suppliers cannot "peer" into each other's data.
>
> Being a non-router/switch guy. How can I configure and secure the switch?
> I have also heard a router guru mentioned that, in order to provide
> security, we should not use intelligent switch as someone connect to the
> console of a switch, he/she can sniff the packets.
>
> Any pointers are appreciated.
>
> Thanks,
>
> C.K.
>
>
>
> **********************************************************************
> Gruntal & Co., L.L.C.'s e-mail system is for business
> purposes only. Messages are not confidential. All e-mail
> may be reviewed by authorized supervisors, compliance or
> internal audit personnel. E-mail will be archived for at least
> three years and may be produced to regulatory agencies or
> others with a legal right to access such information. Gruntal
> will not accept trade order instructions via e-mail. Please
> telephone your Account Executive to place trade orders.
>
> www.gruntal.com
> **********************************************************************
>
----------------------------------------------------------------------------
----
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
>
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
