Greetings!
Devdas Bhagat schrieb:
> On Wed, 02 May 2001, Hiemstra, Brenno spewed into the ether:
> > An OS where a hardware based firewall runs on isn't
> > like the same as an OS that runs on a SUN.
IPSO (the Nokia OS) is a modified *BSD (Net* or Free*, not sure), so
basically EXACTLY the same as an OS (that can run) on a Sun.
> > You must do a lot more effort on securing Solaris
> > then on an OS that runs on a PIX or Nokia.
> More work for Solaris, how much for OpenBSD?
>
> Not flame, but the biggest advantage hardware firewalls have is their
> speed.
To be precize: their initial setup speed.
Most of the so-called "Hardware-FW" are just appliances - standard PCs
in a custom (preferrably 19") box - with a proprietary software (-setup).
Obvious examples include:
* Nokia: PC in-a-box, BSD-variant OS (IPSO), running Checkpoint's
FireWall-1
* Symmantec VelociRaptor: Sun/Cobalt Server, Linux OS, runing Axent
Raptor
* Watchguard Firebox: custom PC, Linux OS, running probably Linux
IPFW
There are extremely few real hardware firewalls which do filtering in
FPGAs
or similar programmable chips on electronic level. They do have an edge on
speed,
but for a price.
Bye
Volker
--
Volker Tanger <[EMAIL PROTECTED]>
Wrangelstr. 100, 10997 Berlin, Germany
DiSCON GmbH - Internet Solutions
http://www.discon.de/
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
