Re: RE:Sizing a Firewall for a Client

From: Vasiliy Boulytchev (linux@boulytcheva.com)
Date: 07/30/02


From: "Vasiliy Boulytchev" <linux@boulytcheva.com>
To: "Jeff Johnson" <JJohnson@crowechizek.com>
Date: Tue, 30 Jul 2002 14:31:56 -0600

well, i believe the original message was regarding the tele, you're talking
about the Sonic Wall Pro, when in turn will cost you at least 3 times as
much then a simple box.
Regards,
Vasiliy Boulytchev
Colorado Information Technologies Inc.
----- Original Message -----
From: "Jeff Johnson" <JJohnson@crowechizek.com>
To: <linux@boulytcheva.com>
Cc: "securitybasics" <"
<security-basics@securityfocus.com/@crowechizek.com"@redoak.coinfotech.com>
Sent: Tuesday, July 30, 2002 1:47 PM
Subject: Re: RE:Sizing a Firewall for a Client

>
> Consider yourself corrected. The box I worked on most recently at a
client
> had a 233 processor in it.
>
> This is not to say that it wasn't kludgy as all get out, especially when
> configuring the VPN solution.
>
> However, the content filtering and general firewalling processes seem to
be
> quite good. We've tested the Sonicwall with up to 5 VPN clients at once
> and it wasn't too bad at all, unfortunately we had no hard numbers, but
the
> users were satisified with the performance.
>
>
> Jeff Johnson,
> MCSE 2000, MCSE+I, CISSP, CNA
> Senior Consultant
> Information Risk Management Group
> Crowe Chizek and Company LLP
>
>
>
> "Vasiliy
> Boulytchev" To: "trh"
<mad.maximus@verizon.net>
> <linux@boulytchev cc: "securitybasics"
<security-basics@securityfocus.com>
> a.com> Subject: Re: RE:Sizing a
Firewall for a Client
>
> 07/29/2002 03:59
> PM
>
>
>
>
>
>
> Well, Sonic Wall sucks. I'm not quit sure, SOMEONE CORRECT ME, but I
think
> Sonic Wall has a 35 mhz cpu. Even though if its running a dedicated OS,
> any
> linux firewall would blow a tele out of the water. Plus Sonic Wall's vpn
> sucks also. I have seen a PII 250 with mandrake 8.2 firewalling DS3s
worth
> of traffic 2.4.18 kernel with FreeSWAN for VPN solution. Only 128 meg of
> ram. About 25 simultanious roadwarrior VPN clients. It smoked. If your
> sonic wall can do that, let me know.
>
> If you want regular office users administering your firewall rules,
> then....... you dont need a firewall.
>
> Regards,
> Vasiliy Boulytchev
> Colorado Information Technologies Inc.
> ----- Original Message -----
> From: "trh" <mad.maximus@verizon.net>
> To: <security-basics@securityfocus.com>
> Sent: Thursday, July 18, 2002 9:51 PM
> Subject: RE:Sizing a Firewall for a Client
>
>
> Hi this is my first time posting on this list, just soaking up all the
> great
> info. I own a Sonicwall, Tele3 and its great. You can add up to 5 users
> right
> outta the box, you can upgrade the nodes packages to get more users, its
> easy
> webbased configuration, have enough vpn tunnels for offsite work, and has
> kept me from being hacked on my home (commercial) DSL networking running
> about 4 servers. Very good support, and all the notifications of updates
> are
> loaded on the web administration page. Recommend for the easy way out.
> Building a linux box/ firewall I used slackware, and then used a system
> hardening package from sastk.org. It works well, but no idea how easy it
> would be for regular office users to configure or administer it!
> There is my two cents. Thanks
>
> Trent
>
>
>
>
>
>
>
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> This message may contain privileged or confidential information. If you
> are not the intended recipient of this message, you may not make any use
> of, or rely in any way on, this information, and you should destroy this
> message and notify the sender by reply email. Any opinions or advice
> contained in this email are subject to the terms and conditions in any
> applicable client engagement letter or service agreement.
>
>



Relevant Pages

  • Re: SBS 2008 - Firewall Appliance?
    ... Cisco ASA 5510 Appliance Content Security Edition Bundle ... 250 IPsec VPN peers, ... But "firewall services" are simply listed as included. ... If you don't need AV or VPN then this is overkill....and I recommend running client AV on a server that can handle monitoring anyways....not using an edge device as the client AV manager...but that's another conversation. ...
    (microsoft.public.windows.server.sbs)
  • Re: remoting not working through vpn
    ... These can act differently depending on where the VPN terminates. ... I have ISA firewall and all my VPN connections terminate on the firewall system. ... The other case might be that you have tunneled the VPN completely through the firewall and let it terminate on the server itself. ... The problem may be in how the client system is presenting its ...
    (microsoft.public.dotnet.framework.remoting)
  • Re: Teleworking
    ... Cisco VPN Client running on local PC ... ADSL router runing VPN passthrough and full firewall ... > simplify the management and deployment of PGP and reduce overall PGP ...
    (Security-Basics)
  • Re: remoting not working through vpn
    ... network through vpn, it worked. ... When we changed the client remoting ... and opened that port on the client's firewall, ... As an alternative approach I guess we could have the server queue up ...
    (microsoft.public.dotnet.framework.remoting)
  • Re: NAT help for simple VPN configuration
    ... > firstly to Philip, i removed NAT and ticked 'Basic Firewall Only', and ... > client connects to the server via it's internal IP when the VPN is ... > browse web sites outside the VPN while it is connected, ...
    (microsoft.public.windows.server.networking)