Re: Distributed Firewall

["Hannes Tschofenig" <Hannes.Tschofenig () siemens com>]

hi all,

i agree with you david that it is certainly not a solution to all problems.
however, in some cases (or scenarios/environments) it could clearly provide
some help. at the bof angelos gave a good picture of what problems the ietf
working group would like to address.

installing firewalls at the end points, where most information (e.g.
application knowledge) is available, is frequently done today. in a
corporate network, however, you will always have some users which feel
unfamiliar with good firewall configuration. such an approach could help
them.

ciao
hanes

----- Original Message -----
From: "David Gillett" <gillettdavid () fhda edu>
To: "'Kendric'" <Kendric () hotpop com>;
<security-basics () lists securityfocus com>
Sent: Wednesday, April 23, 2003 7:10 PM
Subject: RE: Distributed Firewall


> > -----Original Message-----
> > From: Kendric [mailto:Kendric () hotpop com]
> >
> > Hi, just wondering if any of you guys heard of this concept
> > of distributed
> > firewall? I have done some research on it and found it to be quite a
> > wonderful concept into bringing the firewall platform to each
> > client/server
> > end with a central management policy. In other words, it is
> > like having a
> > personal firewall on each individual machine, but centrally
> > managed by a
> > remote management console. In this way, we will not have to
> > put any trust
> > even on the machines on the intranet. Any comments?
>
>   I think the idea probably has some merit as part of a "defence
> in depth" approach.
>   But I don't think it's sufficient on its own, because the
> resources that need to be protected do not exist just on the
> individual machines.  The network which connects them -- upon
> which this approach DEPENDS rather heavily! -- lies outside
> the boundary of what can be protected this way.
>
>   A network which includes both gateway firewalls and individual
> host security is going to be a harder nut to crack than a network
> that relies on only one or the other approach.  And centralised
> administration of individual-host firewalls is an idea whose time
> is surely here.
>
> David Gillett
>
>
>
> ------------------------------------------------------------------------
> ---
> Attend Black Hat Briefings & Training Europe, May 12-15 in Amsterdam,
> the
> world's premier event for IT and network security experts.  The two-day
> Training features 6 hand-on courses on May 12-13 taught by
> professionals.
> The two-day Briefings on May 14-15 features 24 top speakers with no
> vendor
> sales pitches.  Deadline for the best rates is April 25.  Register today
> to
> ensure your place.
> http://www.securityfocus.com/BlackHat-security-basics
> ------------------------------------------------------------------------
> ----


---------------------------------------------------------------------------
Attend Black Hat Briefings & Training Europe, May 12-15 in Amsterdam, the 
world's premier event for IT and network security experts.  The two-day 
Training features 6 hand-on courses on May 12-13 taught by professionals.  
The two-day Briefings on May 14-15 features 24 top speakers with no vendor 
sales pitches.  Deadline for the best rates is April 25.  Register today to 
ensure your place.  http://www.securityfocus.com/BlackHat-security-basics 
----------------------------------------------------------------------------