Security Basics mailing list archives
RE: suggestions on a good firewall
From: "Chris Berry" <compjma () hotmail com>
Date: Thu, 22 May 2003 11:31:02 -0700
From: silvia ghezzi <ghezzi_silvia () yahoo de> Talking about firewalls, I have experience only with Gauntlet, and I was not really happy with it. It was too much complicated to understand and to be used and here was a real lack of support. Now I have been using PIX for a couple of months, and I am happy. But I still had to fight with my management (which is not really IT oriented). Since we have a full Windows 2000 environment with Windows experienced people, they made pressure to have MS ISA server as a firewall. Right now I could got PIX for our remote office, but they are still thinking to go for ISa for oher future remote offices. I have only a little experience on ISA, so I cannot judge. but I still consider it not as a firewall but as a HTTP proxy. Is there someone more into it than me, that can tell me about the advantags and/or disadvantages of having ISA as a firewall?
I'm using ISA here, and it's not bad as long as you use ONLY microsoft products. I chose it originally because when I started here MS was all I knew, now that I'm picking up Linux knowledge as well, I highly recommend IPCOP instead (plus its free, and you know how much manager love that word). IPCOP has firewall/proxy/ids/ssh etc. all built in, and it's ridiculously easy to set up. I use it for our remote office and I never have to do anything with it, just install and forget (well, check for patches once in a while, but not very often) The only real advantage I can see to ISA is tight Active Directory integration.
Chris Berry compjma () hotmail com Systems Administrator JM Associates"All I want is a few minutes alone with the source code for the universe and a quick recompile."
_________________________________________________________________The new MSN 8: advanced junk mail protection and 2 months FREE* http://join.msn.com/?page=features/junkmail
--------------------------------------------------------------------------- Thinking About Security Training? You Can't Afford Not To!Vigilar's industry leading curriculum includes: Security +, Check Point, Hacking & Assessment, Cisco Security, Wireless Security & more! Register Now! --UP TO 30% off classes in select cities-- http://www.securityfocus.com/Vigilar-security-basics
----------------------------------------------------------------------------
Current thread:
- RE: suggestions on a good firewall, (continued)
- RE: suggestions on a good firewall David Gillett (May 22)
- RE: suggestions on a good firewall Mike Heitz (May 22)
- RE: suggestions on a good firewall Potter, Tim (May 22)
- RE: suggestions on a good firewall Christopher Harrington (May 22)
- RE: suggestions on a good firewall Mann, Bobby (May 23)
- RE: suggestions on a good firewall David Ellis (May 23)
- Re: suggestions on a good firewall salgak (May 23)
- RE: suggestions on a good firewall wjnorth (May 23)
- RE: suggestions on a good firewall dave (May 26)
- Re: suggestions on a good firewall salgak (May 23)
- RE: suggestions on a good firewall Chris Berry (May 23)
- RE: suggestions on a good firewall Jordan Jesse - Toronto-MROC (May 23)
- Re: suggestions on a good firewall salgak (May 23)
- RE: suggestions on a good firewall Dana Rawson (May 23)
- Re: suggestions on a good firewall Danny (May 26)
- Re: suggestions on a good firewall Jason Dixon (May 28)
- Re[2]: suggestions on a good firewall Malte von dem Hagen (May 28)
- Re: Re[2]: suggestions on a good firewall Jason Dixon (May 29)
- Re: suggestions on a good firewall Danny (May 26)
- RE: suggestions on a good firewall dave (May 26)
- RE: suggestions on a good firewall Daniel Cid (May 26)
- RE: suggestions on a good firewall Trevor (May 26)