d my email carefully, you also notice that I
> only SSH and netfilter
> > (aka iptables) on the Firewall. Your reason is
> based purely on FUD
> > (Fear, Uncertainty and Doubt).
> >
> > Sean
> >
> >
> > >From: "Allen May" <[EMAIL PROTECTED]&
Inline comment
-Original Message-
From: Sean Young [mailto:[EMAIL PROTECTED]]
Sent: Monday, March 26, 2001 4:20 PM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED];
[EMAIL PROTECTED]
Subject: Re: Performance Comparision between Linux OS Firewall and Cisco
PIX 525
>That
More inline comments (hopefully the last).
- Original Message -
From: "Sean Young" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>;
<[EMAIL PROTECTED]>
Sent: Monday, March 26, 2001 3:19 PM
Subject: Re: Performance Comp
Just trying to help,
Roger
- Original Message -
From: "Sean Young" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>;
<[EMAIL PROTECTED]>
Sent: Monday, March 26, 2001 12:42 PM
Subject: Re: Performance Comparisio
Sigh...inline comments
>From: "Allen May" <[EMAIL PROTECTED]>
>To: "Sean Young" <[EMAIL PROTECTED]>, <[EMAIL PROTECTED]>,
><[EMAIL PROTECTED]>, <[EMAIL PROTECTED]>
>Subject: Re: Performance Comparision between Linux OS Firew
;[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>;
<[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
Sent: Monday, March 26, 2001 3:08 PM
Subject: Re: Performance Comparision between Linux OS Firewall and Cisco PIX
525
> If you at all consider the computer based firewall solution, openbsd is
Sent: Monday, March 26, 2001 2:42 PM
Subject: Re: Performance Comparision between Linux OS Firewall and Cisco PIX
525
> Allen,
> If SSH service is not open on the outside interface, how do you expect
> to troubleshoot the problem when there is problem with the Firewall?
> Tell me this, how
Sigh...inline comments:
- Original Message -
From: "Sean Young" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>;
<[EMAIL PROTECTED]>
Sent: Monday, March 26, 2001 2:42 PM
Subject: Re: Performance Comparision bet
M/ROM just due to
>the moving parts involved.
>
>Allen
>- Original Message -
>From: "Sean Young" <[EMAIL PROTECTED]>
>To: <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>;
><[EMAIL PROTECTED]>
>Sent: Sunday, March 25, 2001 3:05 PM
>Subject: Re
>
> >From: [EMAIL PROTECTED]
> >Reply-To: [EMAIL PROTECTED]
> >To: [EMAIL PROTECTED], "Stuart Brockwell" <[EMAIL PROTECTED]>
> >Subject: Re: Performance Comparision between Linux OS Firewall and Cisco
> >PIX 525
> >Date: Sat, 24 Mar 2001 20:02
: Saturday, March 24, 2001 11:02 PM
To: [EMAIL PROTECTED]; Rik
Subject: Re: Performance Comparision between Linux OS Firewall and Cisco
PIX 525
While I agree that for an enterprise I would choose PIX over Linux
for firewall purposes, if your friends configured a Linux firewall and
ran other serv
t; to speed up internet connection for your users? Squid is free and very
> secure and easy to use.
>
> >From: [EMAIL PROTECTED]
> >Reply-To: [EMAIL PROTECTED]
> >To: [EMAIL PROTECTED], "Stuart Brockwell" <[EMAIL PROTECTED]>
> >Subject: Re: Performance
rnet connection for your users? Squid is free and very
secure and easy to use.
>From: [EMAIL PROTECTED]
>Reply-To: [EMAIL PROTECTED]
>To: [EMAIL PROTECTED], "Stuart Brockwell" <[EMAIL PROTECTED]>
>Subject: Re: Performance Comparision between Linux OS Firewall and Cisco
Thanks for the advice, Kent.
I think we are doing exactly what you say, though I'll check. The
administrator bought an inexpensive Wintel box and I believe he is running
just the Linux firewall on it and no other services.
Performance has been surprisingly good, especially considering that abo
Sean,
Comments imbedded:
On 23 Mar 2001, at 16:12, Stuart Brockwell wrote:
> Hi Sean,
> I am a Linux head my self, and one of our firewalls is in fact
> running
> on a Linux box. The only problem with this type of firewall is that
> you inherit all of the known bugs that the softwa
While I agree that for an enterprise I would choose PIX over Linux
for firewall purposes, if your friends configured a Linux firewall and
ran other services on it, they may be good Linux admins but they
don't know much about security.
There is _no_ good reason to run unnecessary services on a
Priscilla,
You can get a PIX 506 for about $1,400 from www.provantage.com.
This may still be a little pricey for a school though.
I wouldn't worry too much about someone breaking into a properly
configured Linux firewall. First, if you have a box acting as a
firewall, it shouldn't be runnin
It was assumed that the question was a result of an
implementation in an enterpise system. Of course in a
school or a small comapny where uptime does not = $
there is no issue, use Linux, use MS Proxy for all
that matters. But in an enterprise where uptime is
Essentail, there is money at stake a
Priscilla Oppenheimer
Sent: Friday, March 23, 2001 9:38 AM
To: [EMAIL PROTECTED]
Subject: Re: Performance Comparision between Linux OS Firewall and Cisco
PIX 525
How about if the customer is strapped for money. I work at a school.
Luckily our students haven't gotten sophisticated enough to
How about if the customer is strapped for money. I work at a school.
Luckily our students haven't gotten sophisticated enough to break into the
Linux firewall but I don't the think that day is too far away. Some of them
are very smart and they are learning Linux and networking in their classes.
I have seen way too many Linux firewalls hacked as a result of
mis-administration. Now, I'm not assuming anything about your abilities as
the last confirmed hack that I was notified about was a Linux FW setup by 2
guys that I know to be excellent Linux admins. The problem is the inherent
nature
Hi Sean,
I am a Linux head my self, and one of our firewalls is in fact running
on a Linux box. The only problem with this type of firewall is that you
inherit all of the known bugs that the software has. Given that the source
code to Linux is widely available, you have a lot of very talen
Hi Everyone,
My company is putting me in charge in implementing a Firewall for our
company. One guy in my networking group is recommending PIX Firewall.
Furthermore, he also recommends a Cisco Web-caching engine. His reason
is that not only Cisco is good Firewall but it also provides VPN
connec
23 matches
Mail list logo