Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Re: firewall-wizards digest, Vol 1 #961 - 8 msgs

From: "Gonzalo A. Cisternas M." <gcisternas () acapomil cl>
Date: Fri, 9 May 2003 12:30:33 -0400
Hello:

I don't worked with Fw-1, but if does support text format import for rules,
can be possible to make a text dump of your ruleset of Gauntlet, and
parse-it in order to generate the equivalent form in fw1 format.

Some limitations, as many features that exists in Gauntlet are impossible to
configure in other firewall boxes and viceversa.

Personally, I´m working with awk and sed, and such tools works fine.

Maybe this could helps.

Atte.

Gonzalo A. Cisternas M.
R+D Eng. Dept.

Disclaimer
The contents of this message is confidential, based in the professional and
ethical agreement, and can not be used, reproduced, transmitted or stored in
any way by different people rather than the located on the To: or Cc:
fields. If you received this e-mal by mistake, please notify to the sender
of the message and remove the message and all of its attachements from your
computer.


I found some explanation about the halted mode operation, cool ....

http://www.samag.com/documents/s=1824/sam0201d/0201d.htm

Does anyone know any tool/application to migrate a gauntlet ruleset to
checkpoint fw1 ?

Javier Sanchez Llera
Buongiorno - MyAlert
jsanchez () myalert com


On Thu, 2003-05-08 at 19:20, Ted Behling wrote:
At 02:23 AM 5/8/2003, Sean Barraclough wrote:

What are the thoughts on some of the "free" firewalls available. Such
firewalls as Darren Reeds IPF, or the OpenBSD PF? and the Linux

offerings?


Performance?
Security?
Fancy tricks?

Just interested as to the thoughts out in the community.


I've used Linux firewalls since kernel 2.0, with IPChains and now
IPTables.  Their security is most heavily affected by the applications run
on the firewall.  Best practice is to run nothing on the firewall itself,
use an external logging server, and run the OS off read-only media such as
CD-R (perhaps with a floppy for config files).  Some people run a Linux
firewall in "halted mode," where the kernel is stopped but the network
interfaces are still up.  Theoretically, this allows the kernel to filter
packets, but it would be unable to execute any new code if it were somehow
exploited.  As to performance, I've gotten several megabits per second
through a Pentium Pro machine with desktop-grade NICs.  I've never really
benchmarked them, though, since the Internet pipes I deal with are
relatively small (<= T1).

Ted Behling, Chief Penguin Surgeon
Monarch Information Systems, Inc.
tbehling () monarchis net

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards




_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: