FW: security opinions please [7:3666]

2001-05-08 Thread Eric Rivard
If you look at all of Cisco's documentation on their website it recommends you use VLANs just like this. They even did a study with Microsoft and posted it on Microsoft's website suggesting to use VLANS to distinguish between outside, dmz, and internal networks. I have seen many big companies do i

FW: security opinions please [7:3666]

2001-05-09 Thread Eric Rivard
Lets look at Cisco for this. I think they have more EXPERTICE than most of us in setting up e-commerce networks. They have many features and RECOMMEND VLANs. From their web site: The Cisco Private VLAN Feature Cisco private VLAN feature, available on the Catalyst 6000 series and Catalyst 3500 ser

Re: FW: security opinions please [7:3666]

2001-05-08 Thread Brian
Echoing these sentiments here, the whole point of vlans is traffic separation. Brian "Sonic" Whalen Success = Preparation + Opportunity On Tue, 8 May 2001, Eric Rivard wrote: > If you look at all of Cisco's documentation on their website it > recommends you use VLANs just like this. They even

Re: FW: security opinions please [7:3666]

2001-05-08 Thread Drew Simonis
Eric Rivard wrote: > > If Cisco recommends and companies > like Microsoft and Excite are implementing it, I don't see how it can be > a security risk. It can be, and it is. But, so is just about everything. It is the probability of the risk being exploit

Re: FW: security opinions please [7:3666]

2001-05-08 Thread Jim Gillen
Have you ever looked into how a switch can be compromised by an experienced hacker? Even though, theoretically, VLANS can't talk to each other except through a router you are still having external and internal traffic on the same physical box running OS software, which is not perfect. Cheers

FW: FW: security opinions please [7:3666]

2001-05-08 Thread Eric Rivard
y 08, 2001 4:42 PM To: [EMAIL PROTECTED] Subject: Re: FW: security opinions please [7:3666] Have you ever looked into how a switch can be compromised by an experienced hacker? Even though, theoretically, VLANS can't talk to each other except through a router you are still having external and

Re: FW: security opinions please [7:3666]

2001-05-08 Thread Bradley J. Wilson
Drew wrote: >It can be, and it is. But, so is just about everything. It is the >probability of the risk being exploited that really matters, and in >this case I see that as a small one. Now, lets talk about using >Microsoft as a security benchmark... ;-) Reminds me of an obscure Steve Martin

Re: FW: FW: security opinions please [7:3666]

2001-05-08 Thread Jim Gillen
ery firewall is software. The only secure way it to have no Internet access. -Original Message- From: Jim Gillen [mailto:[EMAIL PROTECTED]] Sent: Tuesday, May 08, 2001 4:42 PM To: [EMAIL PROTECTED] Subject: Re: FW: security opinions please [7:3666] Have you ever looked into how a switch ca