Cool another term to start a flame war on. Yes in "Building Internet Firewalls 2ed" a firewall is a system which includes the screening routers (packet filtering devices) and the DMZ(s) as well as the Bastion hosts (Web, ftp servers). Firewalls becoming a "device" (i.e. a Checkpoint "Firewall") is the result of Marketing and popular usage.
That is the Danger of "popular" usage, now you can say "We have a firewall" when all you realy have is a part of a firewall "system". A good fallout of this definition's war is a better understanding of system architecture, make people ask "I have a box labeled 'firewall' but what is it realy and how does it fit in my perimiter network?" Tom ====================================================================== From: "Bill Royds" <[EMAIL PROTECTED]> Subject: Re: Basic DMZ Setup Questions... Date: Mon, 8 Apr 2002 22:05:42 -0400 One of the things to notice in "building Internet Firewalls" is that the = dotted line around the "firewall" included the perimeter network, = screening routers and bastion hosts. A DMZ in their terminology is PART = of a firewall, not separate from it. ********************************************** Tom Arseneault System Admin. Certainty Solutions, formerly Global Networking and Computing (GNAC). "Certainty in an Uncertain World" [EMAIL PROTECTED] http://web.corp.rwc.crtsol.com ********************************************** _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
