nanog mailing list archives
Re: Firewalls - Ease of Use and Maintenance?
From: Joe Greco <jgreco () ns sol net>
Date: Wed, 9 Nov 2011 06:38:01 -0600 (CST)
On 11/09/2011 03:22 PM, Richard Kulawiec wrote:You will find it very difficult to beat pf on OpenBSD for efficiency, features, flexibility, robustness, and security. Maintenance is very easy: edit a configuration file, reload, done.An important feature lacking for now as far as I know is content/web filtering especially for corporates wishing to block inappropriate/time wasting content like facebook. Addition of this would place it a par with the best like Sonicwall and Fortinet.
I would probably disagree with Richard's statement; most organizations are looking for something that's a little more of a product/appliance and a little less of a one-off solution/generic UNIX box. That having been said, if you AREN'T put off by "edit a configuration file", then maybe you won't be put off by "install Squid, add squidGuard (IIRC), and configure transparent proxying" and you're pretty much all the way there. Oh, and you get caching acceleration for free. ... JG -- Joe Greco - sol.net Network Services - Milwaukee, WI - http://www.sol.net "We call it the 'one bite at the apple' rule. Give me one chance [and] then I won't contact you again." - Direct Marketing Ass'n position on e-mail spam(CNN) With 24 million small businesses in the US alone, that's way too many apples.
Current thread:
- Re: Firewalls - Ease of Use and Maintenance?, (continued)
- Re: Firewalls - Ease of Use and Maintenance? Eduardo Schoedler (Nov 09)
- RE: Firewalls - Ease of Use and Maintenance? Blake T. Pfankuch (Nov 08)
- RE: Firewalls - Ease of Use and Maintenance? R. Benjamin Kessler (Nov 08)
- Re: Firewalls - Ease of Use and Maintenance? Jonathan Lassoff (Nov 08)
- Re: Firewalls - Ease of Use and Maintenance? Seth Mos (Nov 09)
- Re: Firewalls - Ease of Use and Maintenance? Tom Hill (Nov 09)
- Re: Firewalls - Ease of Use and Maintenance? Seth Mos (Nov 09)
- Re: Firewalls - Ease of Use and Maintenance? Tom Hill (Nov 09)
- Re: Firewalls - Ease of Use and Maintenance? Tom Hill (Nov 09)
- Re: Firewalls - Ease of Use and Maintenance? Richard Kulawiec (Nov 09)
- Re: Firewalls - Ease of Use and Maintenance? Alex Nderitu (Nov 09)
- Re: Firewalls - Ease of Use and Maintenance? Joe Greco (Nov 09)
- Re: Firewalls - Ease of Use and Maintenance? Richard Kulawiec (Nov 09)
- Re: Firewalls - Ease of Use and Maintenance? Joe Greco (Nov 09)
- Re: Firewalls - Ease of Use and Maintenance? -Hammer- (Nov 09)
- Re: Firewalls - Ease of Use and Maintenance? -Hammer- (Nov 09)
- Re: Firewalls - Ease of Use and Maintenance? Valdis . Kletnieks (Nov 09)
- Re: Firewalls - Ease of Use and Maintenance? Joe Greco (Nov 09)
- Re: Firewalls - Ease of Use and Maintenance? Alex Nderitu (Nov 09)
- RE: Firewalls - Ease of Use and Maintenance? Nathan Eisenberg (Nov 09)
- Re: Firewalls - Ease of Use and Maintenance? Jonathan Lassoff (Nov 09)
- Re: Firewalls - Ease of Use and Maintenance? Nick Hilliard (Nov 09)