Firewall Wizards mailing list archives
Re: Firewalls that generate new packets..
From: jseymour () linxnet com (Jim Seymour)
Date: Mon, 26 Nov 2007 11:13:09 -0500 (EST)
"Paul Melson" <pmelson () gmail com> wrote:
[snip]
A stateful firewall lets you think about your policy in terms of published services; "I let the whole Internet connect to this web server and that mail server, but nothing else. And then whatever our people inside want to do."
But you can achieve that with nothing more than a "firewall router." My good ol' Livingston IRX-211 can do that. Even my (relatively) inexpensive Netopia DSL routers can do that. That was Marcus' point.
Call it cynical. Call it misguided. Call it naive. Call it stupid. But it saves time and energy which translates to money.
[snip] What you're telling me is that, if I don't want to go to the effort, intellectually, time-wise and financially, to obtain and install a proxying firewall, I need not bother with a firewall at all. What you're telling me is just skip the firewall entirely, and put together a comprehensive set of "firewall router" packet filtering rules. Right? Jim -- Note: My mail server employs *very* aggressive anti-spam filtering. If you reply to this email and your email is rejected, please accept my apologies and let me know via my web form at <http://jimsun.linxnet.com/contact/scform.php>. _______________________________________________ firewall-wizards mailing list firewall-wizards () listserv icsalabs com https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- Re: Firewalls that generate new packets.., (continued)
- Re: Firewalls that generate new packets.. lordchariot (Nov 21)
- Re: Firewalls that generate new packets.. Marcus J. Ranum (Nov 23)
- Re: Firewalls that generate new packets.. jdgorin (Nov 21)
- Re: Firewalls that generate new packets.. Dave Piscitello (Nov 21)
- Re: Firewalls that generate new packets.. jdgorin (Nov 21)
- Re: Firewalls that generate new packets.. Bill McGee (bam) (Nov 25)
- Re: Firewalls that generate new packets.. Paul D. Robertson (Nov 25)
- Re: Firewalls that generate new packets.. Marcus J. Ranum (Nov 25)
- Re: Firewalls that generate new packets.. Marcin Antkiewicz (Nov 26)
- Re: Firewalls that generate new packets.. Paul Melson (Nov 26)
- Re: Firewalls that generate new packets.. Jim Seymour (Nov 26)
- Re: Firewalls that generate new packets.. Marcus J. Ranum (Nov 26)
- Re: Firewalls that generate new packets.. Jim Seymour (Nov 26)
- Re: Firewalls that generate new packets.. Darren Reed (Nov 28)
- Re: Firewalls that generate new packets.. Marcus J. Ranum (Nov 28)
- Re: Firewalls that generate new packets.. Paul D. Robertson (Nov 25)
- Re: Firewalls that generate new packets.. Paul Melson (Nov 27)
- Re: Firewalls that generate new packets.. Marcus J. Ranum (Nov 27)
- Re: Firewalls that generate new packets.. Darden, Patrick S. (Nov 27)
- Re: Firewalls that generate new packets.. Marcus J. Ranum (Nov 27)
- Re: Firewalls that generate new packets.. Darren Reed (Nov 27)
- Re: Firewalls that generate new packets.. Darden, Patrick S. (Nov 28)
- Re: Firewalls that generate new packets.. lordchariot (Nov 21)