RE: Security for new small company

From: Vachon, Scott (Scott.Vachon@Paymentech.com)
Date: 01/14/02 

From: "Vachon, Scott" <Scott.Vachon@Paymentech.com>
To: security-basics@securityfocus.com
Date: Mon, 14 Jan 2002 11:37:35 -0600

>In regards to your statement about a netgear router. A device that does
>nat and port forwarding is not a firewall.

It is not a "true" firewall, though it is marketed as one.

> Easily hackable.

Can you point us to evidence to support this statement ?

>There is no rulebase in one of those things.

Not true. The Netgear routers do allow one to implement a rulebase via the
CLI.

>You could easily get the cisco pix or as I prefer a checkpoint FW1 for
small business. I am very big on checkpoint and it has got a lot more
features then a cisco pix.

Easily get ? You are assuming that a small business can "

1) Afford a PIX or Checkpoint FW
2) Afford training so as to properly administrate devices from #1.
3) Afford to hire a person proficient on #1.

IMHO , a small business could do very well with one of the SOHO NATting
devices. They could further enhance the protection by ensuing all the host
systems have the latest patches, and up-to-date anti-virus software running.
Yes, you are correct that PIX and FW-1 are better but, the key word was
"small business."

~S~

Disclaimer: My own two cents !

Relevant Pages

  • RE: RE: Security for new small company
    ... >It is not a "true" firewall, though it is marketed as one. ... >features then a cisco pix. ... You are assuming that a small business can " ... >1) Afford a PIX or Checkpoint FW ...
    (Security-Basics)
  • Re: Firewall recommendation
    ... that a NAT router provides BASIC firewall capability, ... would not use a consumer-grade firewall/router to protect our own ... networks, nor would we recommend one to our clients, which in turn ... my 6 client business is running with a consumer ...
    (microsoft.public.windows.server.sbs)
  • Re: Suggest firewall for Win98se+ICS(dialup)+NAV
    ... to go out and buy all new boxes capable of running Win 2000 Pro or Win XP ... |> either disable the firewall or otherwise change its settings. ... vulnerability in a small business environment is from the inside, ... Any disgruntled Win 98 SE user can obviously walk in and install something ...
    (comp.security.firewalls)
  • Re: Firewall recommendation
    ... that a NAT router provides BASIC firewall capability, ... networks, nor would we recommend one to our clients, which in turn ... my 6 client business is running with a consumer ... OK, I guessed low at 90%, since your recommendation to use consumer-grade ...
    (microsoft.public.windows.server.sbs)
  • RE: Security for new small company
    ... There are several options for a small business to obtain inexpensive ... secondary firewall on my machine and have not been hit with any of the virus ... The least method would be using a Network Address Translationrouter ...
    (Security-Basics)
Quantcast