a much more effective firewall/ids security solution would be to put a
cheap PII or PIII running ipfilter or ipchains and snort in front of your
LAN. other good options would be to spend $80 for a Linksys
router/firewall, or $450 for a Cisco PIX 501. i'm assuming that you are
looking for a home or small office solution based on the nature of your
query.
i have found that running software/host based firewalls at home is a
waste of money, time and CPU, and doesn't offer nearly the levels of
security that can be achieved with the solutions i described in the
first paragraph. i have tried ALL of the available host based firewall
software solutions, but have since either disabled or uninstalled every
one.
bottom line is why use those software/host based solutions that really
just give you little more than an illusion of security when you can have
some *real* security at an affordable price?
Regards,
ken
Ken Williams ; Technical Lead ; [EMAIL PROTECTED]
eSecurityOnline - an eSecurity Venture of Ernst & Young
[EMAIL PROTECTED] ; www.esecurityonline.com ; 1-877-eSecurity
"Philip
Wagenaar" To:
<[EMAIL PROTECTED]>
<PB.Wagenaar@ cc: (bcc: Ken
Williams/AABS/EYLLP/US)
Chello.NL> Subject: Running two software
firewalls at a time
01/11/2002
11:43 AM
Hi,
Would there be a problem if you ran two two firewall proggies at the
same time?
I did a websearch first any only found
http://www.fosters.com/special_sections/online/articles2001/1023d.htm
Which only says two firewalls might conflict with each other without any
specific info.
Besides that there might be softwarewise conflict between them, I'm only
interested in this from security standpoint. I was thinking you could
use the strengths of both.
I also read on the website of networkice that most firewalls fall short
when networkload is high: BlackICE was able to catch 99% of the attacks
on a fully-loaded 10/100 Mbps network using less than 40% of the CPU
resources. The closest competitor used 90% of the CPU resources and only
managed to catch 9% of the attacks.
I can't imagine that when you have installed two firewalls that they
would spread the load since the two programs do not interact with each
other, but more likely that they both would take more cpu resources and
check less network traffic when running two firewalls at the same time
under heave network traffic. Is this true?
Philip Wagenaar
______________________________________________________________________
The information contained in this message may be privileged and
confidential and protected from disclosure. If the reader of this message
is not the intended recipient, or an employee or agent responsible for
delivering this message to the intended recipient, you are hereby notified
that any dissemination, distribution or copying of this communication is
strictly prohibited. If you have received this communication in error,
please notify us immediately by replying to the message and deleting it
from your computer. Thank you. Ernst & Young LLP
