Ben,
> Marconi have a product that run on some of their higher end switches which
> "accelerates" FW-1 filtering. This, it is claimed, lets you use FW-1 at
> multi gigabit speeds. I'm assuming that it works with "flows" where the
> start of the conversation is inspected and the rest is switched.
Found it on the web site, SA-400 if I think correctly. It works exactly as
you described!
> Since we also make a bunch of ATM switching gear it's quite likely that you
> can combine your ATM endpoints with your FW-1.
It even gets better, you even have a pure ATM firewall that filters at
OC-12 speed, both at ATM level and IP level. Quite impressive.
However, I talk with the manager and he said that we could try it out, but
before it needs to go through the client's certification procedure (this
is a big bank), and that would probably take a long time... and we don't
have it. So basically, I'm stuck with FW-1 (with Stonebeat), PIX and
Gauntlet.
I'm thinking of definetively going with PIX... much simpler set-up. The
only worrisome thing is how to manage the access-list if the policy gets
complicated...
Thanks a lot for the info anyway! Didn't know Marconi did firewalls!
Regards,
-- p.
_______________________________________________
Firewalls mailing list
[EMAIL PROTECTED]
http://lists.gnac.net/mailman/listinfo/firewalls
