Security Basics mailing list archives
RE: Firewall/Router: Dedicated Server or Appliance?
From: "Bryan S. Sampsel" <bsampsel () libertyactivist org>
Date: Thu, 3 Nov 2005 13:09:28 -0700 (MST)
David Gillett wrote:
Much of the security really depends on what services/features you're after. If you only allow desktops to go out and no inbound traffic, darn near anything can do the job...if it's SPI capable.In 1995, you could probably get away with allowing arbitrary outbound traffic and still believe your network was adequately secured. That's just not good enough for the realities of 2005.
No arguments there. Unfortunately, not everyone regulates their outbound traffic. The SOHO firewalls are quite guilty of this. But most other products, whether Linux/BSD based or PIX or Netscreen, can handle filtering in/out traffic. But basic SPI allows you to initiate allowed traffic without opening up the same hole inbound. I think you misunderstood what I was getting at. But that's ok...this medium is terrible for communication. ;) Sincerely, Bryan S. Sampsel LibertyActivist.org
Current thread:
- Firewall/Router: Dedicated Server or Appliance? Nuno Marques (Nov 01)
- Re: Firewall/Router: Dedicated Server or Appliance? Fred Cohen (Nov 02)
- Re: Firewall/Router: Dedicated Server or Appliance? André Gil (Nov 02)
- Re: Firewall/Router: Dedicated Server or Appliance? Ivan . (Nov 02)
- Re: Firewall/Router: Dedicated Server or Appliance? Bryan S. Sampsel (Nov 02)
- <Possible follow-ups>
- Re: Firewall/Router: Dedicated Server or Appliance? anonymous (Nov 02)
- RE: Firewall/Router: Dedicated Server or Appliance? David Gillett (Nov 02)
- RE: Firewall/Router: Dedicated Server or Appliance? Bryan S. Sampsel (Nov 03)
- RE: Firewall/Router: Dedicated Server or Appliance? David Gillett (Nov 04)
- RE: Firewall/Router: Dedicated Server or Appliance? Bryan S. Sampsel (Nov 04)
- RE: Firewall/Router: Dedicated Server or Appliance? David Gillett (Nov 02)