>>>>> "Jerome" == Jerome Gotangco <[EMAIL PROTECTED]> writes:
Jerome> Well generally a hardware firewall appliance has a basic
Jerome> ruleset that makes it a good plug and play solution, thus
Jerome> the explosion of such appliances for different market
Jerome> segments (enterprise, soho, home, etc.). Almost always the
Jerome> rulesets don't need anymore optimizations on your part,
Jerome> unless you have really specialized needs. The best way to
Jerome> know if the appliance is doing what you want is to audit it,
Jerome> do some port tests, penetration tests, etc. These appliances
Jerome> also have updated firmware available for download that
Jerome> updates/reconfigures/adds new features to the product as
Jerome> time goes by.
Yes. And if there's a software manual handy, that would be good too. I
think most appliances are capable of providing the user some way to
extend the capabilities by adding/modifying rulesets.
Jerome> It's a relatively painless solution and the technology has
Jerome> matured enough (firewalls don't need that much cpu power),
Jerome> although this is no different compared to an old box
Jerome> configured as a firewall.
Which begs another question: what would you guys consider an `old'
system to be useful as a firewall?
--
ZAK B. ELEP <[EMAIL PROTECTED]> -- <http://zakame.spunge.org>
1024D/FA53851D 1486 7957 454D E529 E4F1 F75E 5787 B1FD FA53 851D
-- Running Debian GNU+Linux testing/unstable. GnuPG signed mail preferred.
pgpjwYYo7sPwU.pgp
Description: PGP signature
-- Philippine Linux Users' Group (PLUG) Mailing List [email protected] (#PLUG @ irc.free.net.ph) Official Website: http://plug.linux.org.ph Searchable Archives: http://marc.free.net.ph . To leave, go to http://lists.q-linux.com/mailman/listinfo/plug . Are you a Linux newbie? To join the newbie list, go to http://lists.q-linux.com/mailman/listinfo/ph-linux-newbie
