Re: Firewalls for Linux versus netopia router

Thu, 05 Oct 2000 13:26:45 -0700 

James,

What are the reasons of the consulting firms for their
suggestions?  Could the suggestion of moving the ftp
and web hosting be for security reason?

Is the Linux box not able to do what you want to be done
(in terms of feature, function, and performance)?  It seems
like such a waste to have a router sitting there collecting dust :).
But if the Linux box is able to meet all your needs(whatever they are),
why fix something that is not broken.

Now, if the Linux box is not able to provid everything you want,
that is a different story.


Regards,
tomas

 -> From [EMAIL PROTECTED]  Thu Oct  5 15:02:56 2000
 -> Delivered-To: [EMAIL PROTECTED]
 -> Date: Thu, 05 Oct 2000 12:55:07 -0700
 -> From: "Scott Peters" <[EMAIL PROTECTED]>
 -> To: "<\"Firewalls\"" <[EMAIL PROTECTED]>
 -> Cc: "Ian Smith" <[EMAIL PROTECTED]>
 -> Subject: Firewalls for Linux versus netopia router
 -> Content-Disposition: inline
 -> Content-Transfer-Encoding: 8bit
 -> X-MIME-Autoconverted: from quoted-printable to 8bit by spike.rwc.gnac.net id 
MAA23660
 -> Sender: [EMAIL PROTECTED]
 -> X-Loop: [EMAIL PROTECTED]
 -> Status: RO
 -> 
 -> 
 -> Hey folks,
 -> 
 -> We have a linux box which is  set up to perform NAT and is serving as a firewall 
for the internal network. (ipchains set to deny everything and then a few services are 
then allowed).   Sendmail is forwarding incoming mail into the internal net to be 
recieved by our email server.  The linux box also has FTP enabled (with restrictions 
such as no creating of directories)  and a small Apache website which sees VERY little 
traffic.
 -> 
 -> We recently had our network evaluated by several companies.  one of whom suggests 
the removal of the linux box.  They suggest that the netopia router perform NAT. and 
ftp and Web hosting put off site.  (Please remember these two services are see little 
traffic.)
 -> 
 -> If I do pull nat from the linux box, would I not loose the ability of sendmail to 
route incoming emails?
 -> 
 -> 
 -> In the past, My predeccessor, along with a local consulting firm, spent several 
weeks trying to get the netopia router to do the NAT but they were unable to get the 
router to perform at an exceptable level of performance.  
 -> 
 -> Is there something that they or I missed?
 -> Is this so wrong that we have to spend a bunch of time reconfiguring it?
 -> all points of view would be appreciated.
 -> 
 -> Kind regards,
 -> James Scott Peters
 -> 
 -> -
 -> [To unsubscribe, send mail to [EMAIL PROTECTED] with
 -> "unsubscribe firewalls" in the body of the message.]
 -> 
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]

Reply via email to