Security Basics mailing list archives
Re: Firewall and DMZ topology
From: "Steve Bremer" <steveb () nebcoinc com>
Date: Wed, 11 Jun 2003 08:04:08 -0500
In theory yes, however, if your administration isn't perfect, it would actually LOWER your security stance. Kind of goes against the KISS principal unless you have enough staff/time to keep a close eye on it. Guess it all depends on your size.
True, but I figure that's what I'm paid for ;-) Like you said, it goes back to administration. What is complex for one person, may be easy for another. I was thinking more along the lines of Linux on one firewall and OpenBSD on the other. Knowing one version of *nix, usually makes it easier to use/configure another. However, I could see where using a combination like Cisco PIX + MS ISA or even Linux + MS ISA would require a broader skill set to administer properly than two versions of *nix. Steve Bremer NEBCO, Inc. System & Security Administrator --------------------------------------------------------------------------- Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts! The Gartner Group just put Neoteris in the top of its Magic Quadrant, while InStat has confirmed Neoteris as the leader in marketshare. Find out why, and see how you can get plug-n-play secure remote access in about an hour, with no client, server changes, or ongoing maintenance. Visit us at: http://www.neoteris.com/promos/sf-6-9.htm ----------------------------------------------------------------------------
Current thread:
- RE: Firewall and DMZ topology, (continued)
- RE: Firewall and DMZ topology Chris Berry (Jun 10)
- Re: Firewall and DMZ topology Chris Berry (Jun 10)
- RE: Firewall and DMZ topology Depp, Dennis M. (Jun 10)
- RE: Firewall and DMZ topology Steve Bremer (Jun 10)
- RE: Firewall and DMZ topology ed (Jun 10)
- RE: Firewall and DMZ topology David Ellis (Jun 10)
- RE: Firewall and DMZ topology DeGennaro, Gregory (Jun 10)
- RE: Firewall and DMZ topology Depp, Dennis M. (Jun 10)
- RE: Firewall and DMZ topology Daniel B. Cid (Jun 10)
- Re: Firewall and DMZ topology Chris Berry (Jun 10)
- Re: Firewall and DMZ topology Steve Bremer (Jun 11)
- RE: Firewall and DMZ topology Depp, Dennis M. (Jun 11)
- RE: Firewall and DMZ topology Depp, Dennis M. (Jun 11)
- RE: Firewall and DMZ topology Morgado Alain (Jun 11)
- Ang: RE: Firewall and DMZ topology marcus (Jun 11)
- RE: Firewall and DMZ topology ed (Jun 11)
- RE: Firewall and DMZ topology David Gillett (Jun 11)
- Re: Firewall and DMZ topology Adam Newhard (Jun 11)
- nmap for windows Zekeriya Eskiocak (Jun 12)
- RE: nmap for windows Jason Jaszewski (Jun 12)
- RE: nmap for windows matt (Jun 12)