Security Basics mailing list archives

RE: Firewall Basics

From: "J.Ayoola" <J.Ayoola () westminster ac uk>
Date: Thu, 22 Jul 2004 10:15:41 +0100

I think it is prudent to have firewalls from 2 different vendors.  In my
opinion having different vendor's makes it harder for your network to be
penetrated because the attacker has to find out about the holes in two
vendor firewalls to successfully exploit your network.

If you have just one vendor, vulnerabilities in the first firewall will also
be present in the second and once you successfully penetrate the first, the
same holes can be exploited on the second.

Judie

-----Original Message-----
From: Jennifer Fountain [mailto:jfountain () rbinc com] 
Sent: 21 July 2004 16:19
To: security-basics () securityfocus com
Subject: Firewall Basics

Hi all:

I am designing a "service" network that is separate from our
"production" network.  Our web sites, email server, etc will be
utilizing this network; whereas, internet traffic and vpn traffic will
utilize the other.  My question is in regards to firewalls.  Currently,
I am using a PIX for my production network.  From what I have been
hearing, it is recommended to use two different firewall vendors in this
situation.  Is this a general consensus with all of you?  Or do you
think having another pix would be ok?  Thanks for any info!


Kind Regards,

Jennifer 


---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off 
any course! All of our class sizes are guaranteed to be 10 students or less 
to facilitate one-on-one interaction with one of our expert instructors. 
Attend a course taught by an expert instructor with years of in-the-field 
pen testing experience in our state of the art hacking lab. Master the
skills 
of an Ethical Hacker to better assess the security of your organization. 
Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------



---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off 
any course! All of our class sizes are guaranteed to be 10 students or less 
to facilitate one-on-one interaction with one of our expert instructors. 
Attend a course taught by an expert instructor with years of in-the-field 
pen testing experience in our state of the art hacking lab. Master the skills 
of an Ethical Hacker to better assess the security of your organization. 
Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------

Current thread:

Firewall Basics Jennifer Fountain (Jul 21)
- SV: Firewall Basics Kim Guldberg (Jul 22)
- Re: Firewall Basics NSC (Jul 22)
- Re: Firewall Basics Miles Stevenson (Jul 22)
- RE: Firewall Basics David Gillett (Jul 22)
- RE: Firewall Basics J.Ayoola (Jul 22)
- Re: Firewall Basics jon rodman (Jul 23)
- Re: Firewall Basics Miles Stevenson (Jul 23)
- <Possible follow-ups>
- Re: Firewall Basics eip (Jul 26)