On 2000-03-19T19:53:58,
Gregory Maxwell <[EMAIL PROTECTED]> said:
> Now tell me how to use a stateful firewall in a network which requires
> zero single-points of failure beyond the endnodes?
In such a case, you can't use a real firewall, because a real firewall doesn't
rely on packet filtering only, but includes an application level gateway.
For SPF, the hot-failover can be solved at least, and last I heard we are
working on it.
Application proxy failover involves TCP/IP and application state and is
currently not planned for Linux, for all I know.
So the answer is: Use the right tool for the job. In your situation, you can't
go for "maximum" security.
Sincerely,
Lars Marowsky-Br�e <[EMAIL PROTECTED]>
Development HA
--
Perfection is our goal, excellence will be tolerated. -- J. Yahl
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
- Re: Can a linux firewall protect against SYN flooding... Alan Cox
- Re: Can a linux firewall protect against SYN flooding... Lars Marowsky-Bree
- Re: Can a linux firewall protect against SYN flo... Catalin BOIE
- Re: Can a linux firewall protect against SYN... Steve Dodd
- Re: Can a linux firewall protect against... Christopher E. Brown
- Re: Can a linux firewall protect ag... Lars Marowsky-Bree
- Re: Can a linux firewall prote... Gregory Maxwell
- Re: Can a linux firewall ... Lars Marowsky-Bree
- Re: Can a linux firewall pr... Alan Cox
- Re: Can a linux firewall ... Gregory Maxwell
- Re: Can a linux firewall p... Lars Marowsky-Bree
- Re: Can a linux firewall p... Christopher E. Brown
- Re: Can a linux firewall p... Stephen Satchell
- Re: Can a linux firewall p... Gregory Maxwell
- Re: Can a linux firewall protec... Steve Dodd
- Re: Can a linux firewall pr... Michael H. Warfield
- Re: Can a linux firewall pr... Gregory Maxwell
- Re: Can a linux firewall pr... Michael H. Warfield
- Re: Can a linux firewall pr... Gregory Maxwell
- Ethernet card problems kiran keshava
- Ethernet card problems kiran keshava
