RE: Firewall Switch

["Richard Rees" <richard.rees () ins com>]

Information Security Magazine recently did a article comparing checkpoint on
nokia to iptables and freeswan.  The summary of the article is:  No.  They
still aren't ready for enterprise class.  If you go to their archives you
should be able to dig it up.

Richard Rees, CISSP
Principal Consultant, International Network Services
Voice:  847.756.4072
Mobile:  847.650.0335
Email:   richard.rees () ins com
"The consultants that go to eleven"


-----Original Message-----
From: Zill, Greg [mailto:Greg.Zill () owh com] 
Sent: Wednesday, November 19, 2003 12:16 PM
To: security-basics () securityfocus com
Subject: Firewall Switch

Is it reasonable to switch from licensed proprietary firewall to Open
Source firewall? With budget restraints what they are these days, I
figure I can step up and offer to convert the impending expiration of
current hardware/license. The proprietary firewalls currently in place
number 7 and protect key internet points at 6 geo-locations. Current
support licensing is past $10k per. The firewall technology itself
purports application layer, although much of the newly needed http/xml
stuff is not yet implemented.

Would I be able to provide the same level of protection and prove same
to managers? Would I really save dough? Also site-to-site vpn is in the
mix betwixt all sites...any thought appreciated.

---------------------------------------------------------------------------
----------------------------------------------------------------------------


---------------------------------------------------------------------------
----------------------------------------------------------------------------