Re: [fw-wiz] Multiple firewalls from different manufactureres

• Previous message: Joseph S D Yao: "Re: [fw-wiz] Multiple firewalls from different manufactureres"
• Maybe in reply to: Keith A. Glass: "Re: [fw-wiz] Multiple firewalls from different manufactureres"
• Next in thread: Joseph S D Yao: "Re: [fw-wiz] Multiple firewalls from different manufactureres"
• Reply: Joseph S D Yao: "Re: [fw-wiz] Multiple firewalls from different manufactureres"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: "Joseph S D Yao" <jsdy@center.osis.gov>, "Keith A. Glass" <salgak@speakeasy.net>
Date: Fri, 28 Jan 2005 18:27:02 +0000

> -----Original Message-----
> From: Joseph S D Yao [mailto:jsdy@center.osis.gov]
> Sent: Friday, January 28, 2005 06:10 PM
> To: 'Keith A. Glass'
> Cc: firewall-wizards@honor.icsalabs.com
> Subject: Re: [fw-wiz] Multiple firewalls from different manufactureres
>
> On Fri, Jan 28, 2005 at 05:00:03PM +0000, Keith A. Glass wrote:
> ...
> > > As Paul said, TANSTAAFFW (there ain't no such thing as a free firewall)
> > > - but what you spend and where and how differs from firewall to
> > > firewall.
> >
> > Yes and no. You CAN put up a decent firewalling solution using commodity computers, especially the 1-U units (Dell 1700-series, HP Proliant DL360s, etc. . ) and either Linux, Solaris (now that it's free) or some flavor of BSD, and the firewall of your choice. I just wish some of the vendors would allow their FW solution to be available outside the "appliance" vehicle (Yes, I'm talking about Symantec and Secure Computing. . .)
> >
> > When I was running the firewalls at SEC's EDGAR project, we used a mix of Gauntlets and FW-1, all running on various flavors of Sun hardware, from old Ultra 5's and 10's to new SunFire 480's (we were in an upgrade cycle, 18 months ago. . )
> >
> > Keith
> > Merrily running systems at Fort Belvoir. . .
>
> Keith, "commodity" hardware still isn't "free"; neither is recycled
> hardware if there is some other possible use for it, or if its age
> causes it to fail earlier than it would otherwise have. TIS Gauntlet
> and Check Point Firewall-1 still cost something, last I checked [and
> last Gauntlet was available]. And I don't THINK you were donating your
> labour to put together even the free-software packages, eh? This is
> what I meant, and inferred from Paul's comment, about TANSTAAFFW.
>
> [In all of the above, "free" is intended as in "free beer".]

My point was, you CAN build reliable firewalling solution that does not cost a LOT of money. And yes, Gauntlet HAS disappeared, merging with Sidewinder and showing up as the "Sidewinder G-2" software on Secure's Firewall appliance (a 1-U Dell Box running a cut-down version of some flavor of BSD. . .and costing far more than it should. . .)

_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

• Previous message: Joseph S D Yao: "Re: [fw-wiz] Multiple firewalls from different manufactureres"
• Maybe in reply to: Keith A. Glass: "Re: [fw-wiz] Multiple firewalls from different manufactureres"
• Next in thread: Joseph S D Yao: "Re: [fw-wiz] Multiple firewalls from different manufactureres"
• Reply: Joseph S D Yao: "Re: [fw-wiz] Multiple firewalls from different manufactureres"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]