Educause Security Discussion mailing list archives

Re: PIX/AS Vs. Linux/IPtables

From: Justin Azoff <JAzoff () UAMAIL ALBANY EDU>
Date: Wed, 30 Sep 2009 11:46:48 -0400

On Wed, Sep 30, 2009 at 10:33:55AM -0500, HALL, NATHANIEL D. wrote:

I would disagree with your statements.  PIX/ASA devices still have an OS so
they could be compromised just like a Netfilter host.  If the Netfilter
firewall is standalone, just as the PIX/ASA, then you could easily secure it.


And the ASA is actually just a linux box, so you're really comparing apples to.. apples :-)

--
-- Justin Azoff
-- Network Performance Analyst

Current thread:

PIX/AS Vs. Linux/IPtables ron behrang (Sep 29)
- <Possible follow-ups>
- Re: PIX/AS Vs. Linux/IPtables Gary Dobbins (Sep 30)
- Re: PIX/AS Vs. Linux/IPtables HALL, NATHANIEL D. (Sep 30)
- Re: PIX/AS Vs. Linux/IPtables Justin Azoff (Sep 30)
- Re: PIX/AS Vs. Linux/IPtables Joe Vieira (Sep 30)
- Re: PIX/AS Vs. Linux/IPtables Gary Dobbins (Sep 30)
- Re: PIX/AS Vs. Linux/IPtables John Ladwig (Sep 30)
- Re: PIX/AS Vs. Linux/IPtables David Gillett (Sep 30)