Andy Ousterhout wrote:
Which is more secure: Running your firewall on the NT 2003 Server or running
it on a router?
Both.
Jochem
~|
Discover CFTicket - The leading ColdFusion Help Desk and Trouble
Ticket application
LOL. So both can be equally secure?
-Original Message-
From: Jochem van Dieten [mailto:[EMAIL PROTECTED]
Sent: Wednesday, February 09, 2005 10:50 AM
To: CF-Talk
Subject: Re: OT: Firewall question
Andy Ousterhout wrote:
Which is more secure: Running your firewall on the NT 2003 Server
Andy Ousterhout wrote:
LOL. So both can be equally secure?
Yes, they can be equally secure. But why not run one on both?
Jochem
~|
Logware (www.logware.us): a new and convenient web-based time tracking
application. Start
Well, cause I don't need the router if I go directly to the NT machine (I've
got a hub too). So the doubling up adds 1 more layer to be broken thru? So
you route LAN through router into Server and out of Server to hub?
Andy
-Original Message-
From: Jochem van Dieten
Andy Ousterhout
With a hardware firewall to be extra safe.
-Original Message-
From: Jochem van Dieten [mailto:[EMAIL PROTECTED]
Sent: 09 February 2005 16:57
To: CF-Talk
Subject: Re: OT: Firewall question
Andy Ousterhout wrote:
LOL. So both can be equally secure?
Yes, they can be equally secure
Andy Ousterhout wrote:
Well, cause I don't need the router if I go directly to the NT machine (I've
got a hub too). So the doubling up adds 1 more layer to be broken thru? So
you route LAN through router into Server and out of Server to hub?
Hub? LAN? WAN? Router? Firewall? How about some
I have been using IPCop with great success for a couple of years now.
Simple to use, fast to respond to patching requirements.Old versions are
RedHat based but the current Dev Tree uses Linux From Scratch.
--
Jay
-Original Message-
From: Michael Dinowitz [mailto:[EMAIL PROTECTED]
We use sonicwall appliances and are very happy with them.They're easy to set up and work great.\
Regards,
--
Howie Hamlin - inFusion Project Manager
On-Line Data Solutions, Inc. - www.CoolFusion.com
inFusion Mail Server (iMS) - The Award-winning, Intelligent Mail Server
PrismAV - Virus scanning
Michael Dinowitz wrote:
Anyone know of a god network firewall system?
What features do you need? Statefull I presume, so how big should
the state table be? Throughput in pps? SYN-proxy? Payload
inspection? Redundancy/fail-over? Clickety-click or CLI?
SSL-offloading? VPN-server? etc.
Jochem
Netscreen.Now Jupiter I think.
Using them for over 4 years.Have not found one bad thing about Netscreen.
At 09:51 AM 8/2/2004, you wrote:
Anyone know of a god network firewall system? Zonealarm is good for a
single machine, but I think that mothernature.com needs a system wide
firewall. What do
Hi Mike,
Anyone know of a god network firewall system?
For his/her/its networks, common mythology has it the God uses a guy
named Peter.However, the other side has its tools too:
Anyone know of a god network firewall system? Zonealarm is good for a
single machine, but I think that mothernature.com needs a system wide
firewall. What do you use, what do you suggest?
Thanks
i've used kerio for personal fw.. i /think/ they might have a network
solution...
http://www.kerio.com
Sent: Monday, August 02, 2004 12:01 PM
Subject: Re: (OT) Firewall
Anyone know of a god network firewall system? Zonealarm is good for a
single machine, but I think that mothernature.com needs a system wide
firewall. What do you use, what do you suggest?
Thanks
i've used kerio for personal fw.. i
I second SonicWall. Piece of caketo use.
-Original Message-
From: Howie Hamlin [mailto:[EMAIL PROTECTED]
Sent: Monday, August 02, 2004 12:56 PM
To: CF-Talk
Subject: Re: (OT) Firewall
We use sonicwall appliances and are very happy with them.They're easy to
set up and work great
I use a Watchguard Firebox X500 (scalable hardware solution, very
reasonable, with lots of add ons). The new NetGear Gigabit switches are
extremely reasonable. Still using a Cisco router...
Cutter
Michael Dinowitz wrote:
Anyone know of a god network firewall system? Zonealarm is good for a
Anyone know of a god network firewall system?
What features do you need? Statefull I presume, so how big
should the state table be? Throughput in pps? SYN-proxy?
Payload inspection? Redundancy/fail-over? Clickety-click or CLI?
SSL-offloading? VPN-server? etc.
Jochem's asking all the
Personally, I use IPTables for network firewall protection, both because of the price and the ease of use. For me, it is simpler to crank out a list of rules on the command line than to trust some GUI that may or may not be doing what it says it is doing.
Also, as a Flash developer who sometimes
Checkpoint solutions is easy to setup and manage.
Tha hardware / software bundles (for example NOKIA IP130) is very close
to a solid state firewall if such a thing existed :)
http://www.checkpoint.com/products/choice/platforms.html
IMHO...
Helge (-:
Dave Watts wrote:
What features do you need? Statefull I presume, so how big
should the state table be? Throughput in pps? SYN-proxy?
Payload inspection? Redundancy/fail-over? Clickety-click or CLI?
SSL-offloading? VPN-server? etc.
Jochem's asking all the right questions, as usual, but
The difference is that I would recommend to build your own on
OpenBSD. OpenBSD is pretty much designed for running on the
edge of your network, and IMHO it is far ahead of other
firewall systems in terms of power and features.
Yeah, the only reason I didn't recommend it is because I think
We use, recommend and sell SonicWall products.We also sell Cisco (Pix).
SonicWall is reasonably priced, easy to use, and well supported.
Cary Gordon
The Cherry Hill Company
_
From: Michael Dinowitz [mailto:[EMAIL PROTECTED]
Sent: Monday, August 02, 2004 9:51 AM
To: CF-Talk
Subject: (OT)
Tom Kitta said:
Using just Windows packet filtering is not enough, it is stateless
and doesn't offer much protection. It is better than nothing at all,
but not much more.
It is sufficient. If you are suffering from attacks that start messing
with for instance syn flags *and* are subtle enough
We recommend Cisco and Sonicwall. For most applications, the SonicWall will
do everything needed and it is has a great administrative interface.
The Cisco PIX is more flexible, but it needs a lot of attention and an
expensive Cisco maintenance contract so you have something to attend to it
Eric Creese wrote:
Any recommendations for a good, inexpensive firewall for a web server?
Hardware or software?
If hardware, other server running a diskless OpenBSD.
If software, which OS?
Jochem
--
I don't get it
immigrants don't work
and steal our jobs
- Loesje
[Todays Threads]
[This
OS - Single Web server running Win2kSP4
Looking for software.
_
[Todays Threads]
[This Message]
[Subscription]
[Fast Unsubscribe]
[User Settings]
/she is doing.
TK
-Original Message-
From: Jochem van Dieten [mailto:[EMAIL PROTECTED]
Sent: Wednesday, February 04, 2004 1:04 PM
To: CF-Talk
Subject: Re: OT-Firewall
Eric Creese wrote:
Any recommendations for a good, inexpensive firewall for a web server?
Hardware or software
Eric, we use Tiny Firewall for this sort of requirement.
http://www.tinysoftware.com/home/tiny2?la=EN
Hth, I am sure Jochem will have some good recommendations on this also.
Kind Regards - Mike Brunt
Original Message ---
OS - Single Web server running Win2kSP4
Looking
Ok so what HW Firewall would you recommend?
-Original Message-
From: Tom Kitta [mailto:[EMAIL PROTECTED]
Sent: Wednesday, February 04, 2004 12:16 PM
To: CF-Talk
Subject: RE: OT-Firewall
If you want something easy to setup, it will not be free, but will cost you
a bit. Most hard to setup
-Firewall
Ok so what HW Firewall would you recommend?
-Original Message-
From: Tom Kitta [mailto:[EMAIL PROTECTED]
Sent: Wednesday, February 04, 2004 12:16 PM
To: CF-Talk
Subject: RE: OT-Firewall
If you want something easy to setup, it will not be free, but will cost you
a bit. Most hard
Netscreen.They have a rack-mountable unlimited session device for less
than $1000.Then there's always Cisco.
-Original Message-
From: Eric Creese [mailto:[EMAIL PROTECTED]
Sent: Wednesday, February 04, 2004 11:54 AM
To: CF-Talk
Subject: OT-Firewall
Any recommendations for a good,
]
Sent: Wednesday, February 04, 2004 2:37 PM
To: CF-Talk
Subject: RE: OT-Firewall
Ok so what HW Firewall would you recommend?
-Original Message-
From: Tom Kitta [mailto:[EMAIL PROTECTED]
Sent: Wednesday, February 04, 2004 12:16 PM
To: CF-Talk
Subject: RE: OT-Firewall
If you want something
SmoothWall it's open source and free, runs likes a train and easy to
install..
Taco Fleur
Bloghttp://www.tacofleur.com/index/blog/
http://www.tacofleur.com/index/blog/
Methodology http://www.tacofleur.com/index/methodology/
Tell me and I will forget
Show me and I will remember
Teach me and I
Eric Creese wrote:
OS - Single Web server running Win2kSP4
Looking for software.
What sort of ruleset are you looking at? Doing simple only port
80 443 rules, or do you want to do stuff like limit the amount
of syn's per remote IP address + total connection limit,
statefull UDP filtering
Mike Brunt wrote:
Eric, we use Tiny Firewall for this sort of requirement.
http://www.tinysoftware.com/home/tiny2?la=EN
Hth, I am sure Jochem will have some good recommendations on this also.
I'm not sure if they are good, I could use some peer review ;-)
My usual solution is to enable
Until we upgraded to a multi-server rack system we were quite happy with
our Linksys 4 port firewall/router
Under $100 and you can lock down ports , open up specific ports as needed
for various serviceswith
a web interface (need to be logged into the server)...
At 12:13 PM 2/4/04, you wrote:
OS
]-Original Message-
From: Jochem van Dieten [mailto:[EMAIL PROTECTED]
Sent: Wednesday, February 04, 2004 4:32 PM
To: CF-Talk
Subject: Re: OT-Firewall
Mike Brunt wrote:
Eric, we use Tiny Firewall for this sort of requirement.
http://www.tinysoftware.com/home/tiny2?la=EN
Hth, I am sure Jochem
- Original Message -
From: Jochem van Dieten [EMAIL PROTECTED]
To: CF-Talk [EMAIL PROTECTED]
Sent: Wednesday, February 04, 2004 2:32 PM
Subject: Re: OT-Firewall
Mike Brunt wrote:
Eric, we use Tiny Firewall for this sort of requirement.
http://www.tinysoftware.com/home/tiny2?la=EN
37 matches
Mail list logo