Re: [fw-wiz] maybe OT: web appliaction security products (AKA application firewalls)
From: Emmanuel (ead@free.fr)
Date: 11/03/02
- Next message: Marcus J. Ranum: "Re: [fw-wiz] Firewall Primitives"
- Previous message: Ali Saifullah Khan: "Re: [fw-wiz] IDS or Intrusion Prevention Systems"
- In reply to: Shimon Silberschlag: "[fw-wiz] maybe OT: web appliaction security products (AKA application firewalls)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: Emmanuel <ead@free.fr> To: <firewall-wizards@honor.icsalabs.com> Date: Sun Nov 3 08:23:05 2002
On Thursday 24 October 2002 13:06, Shimon Silberschlag wrote:
> What is the group experience with these type of devices? Any good, bad
> or horror stories about using/maintaining them? Any specific
> recommendations?
Did you have a look at rWeb (
http://www.denyall.com/en/solsecu/rweb/index.html ) ?
I am one of its happy users (since release 1.0). It only filters HTTP and
HTTPS. But has an interesting side-effect on the performance due to a
built-in web cache. The hard work is the definition of the allowed traffic.
But rWeb comes with a so-called "self training" module that can read log
files and automagically generates the proper filtering rules.
> [...]
>
> Shimon Silberschlag
-- Emmanuel
Whether weary or unweary, O man, do not rest,
Do not cease your single-handed struggle.
Go on, do not rest.
-- An old Gujarati hymn
- Next message: Marcus J. Ranum: "Re: [fw-wiz] Firewall Primitives"
- Previous message: Ali Saifullah Khan: "Re: [fw-wiz] IDS or Intrusion Prevention Systems"
- In reply to: Shimon Silberschlag: "[fw-wiz] maybe OT: web appliaction security products (AKA application firewalls)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
