Anish, Securing servers, workstations, and network devices should be done on a diversity of products to slow or stop "day 0" cracks and/or challenge the experience level of the cracker. The cracker may know UNIX cracking really well but not know Cisco PIX, Sidewinder, Nokia Check point, or Netscreen.
I know vendors and managers will talk about ROI and etc. However, ROI does not save you from crackers. They also should spend the money to hire experienced people and pay them well. As long as your main firewall is not Linux and the firewall on the server itself is not going to impact any processes, I would go ahead and implement. -----Original Message----- From: Anish Basu [mailto:[EMAIL PROTECTED] Sent: Tuesday, June 24, 2003 11:25 PM To: [EMAIL PROTECTED] Subject: Firewall on server itself I am trying to set up a secure web server which will already be protected by a dedicated harware firewall. The hardware firewall will be configured to protect the web server as well other computers on the network. The web server will be running Red Hat 9.0. Is there any reason to install and configure firewall software such as IPTables on the web server itself? Are there any advantaqes or disadvantages to having two firewalls set up this way? Thanx in advance for any help. --------------------------------------------------------------------------- Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts! The Gartner Group just put Neoteris in the top of its Magic Quadrant, while InStat has confirmed Neoteris as the leader in marketshare. Find out why, and see how you can get plug-n-play secure remote access in about an hour, with no client, server changes, or ongoing maintenance. Visit us at: http://www.neoteris.com/promos/sf-6-9.htm ----------------------------------------------------------------------------
