Re: Gnat Box: any comments on how good it is?

["Yakov Kravets" <ygk () nb com>]

On Thu, 4 Mar 1999, Chris Crozier wrote:

> I did a quick troll through deja news but found little of value: I'd
> appreciate any comments, pro or con, on the Gnat Box. We have been offered
> it as a solution but, cynic that I am, I'm wondering if it is as good as it
> sounds.

We've purchased GNATBox for internal use to replace Cisco PIX. Basicaly
it's a locked bsd-based box that does SPF. Without source sode it's hard
to verify kernel security but we did a satan and ISS scan against it and
it didn't show any problems. I still feel a bit freaky to put it on the
perimeter. However it does a good job firewalling our vendor connections.
One feature that I realy like is Stealth Mode. The bigest issue for us is
redundancy, which GTA promisses to address in next releases.

ygk.