Re: Gauntlet 5.5, is packet filtering stateful?

["Christopher Lee" <complexity () bigfoot com>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Lance,

Gauntlet 5.5 is a proxy-based firewall.  So, as the result, instead
of being "stateful", the HTTP traffic is typically handled via the
HTTP proxy (which proxies the traffic instead of packet filtering
it).  However, to answer your question on its intelligence on
expecting return packets, it does have that intelligence (though it's
done on a very different principle from the stateful inspection FW
like CheckPoint).

I used the word "typically" in my previous paragraph because one
could also configure a packet filter within Gauntlet to facilitate
such communication on port 80.  I have known some people who couldn't
understand how to work the proxies and ended up using his Gauntlet
firewall like a packet filtering firewall....  :-(

Hope this answers your question,

Chris

- ----- Original Message ----- 
From: "Lance Spitzner" <lance () honeynet org>
To: <firewall-wizards () nfr com>
Sent: Saturday, September 01, 2001 10:06 AM
Subject: [fw-wiz] Gauntlet 5.5, is packet filtering stateful?


> Guantlet ver5.5 firewall has packet filtering capabilities.
> Are these packet filtering features stateful?  By stateful,
> I mean does Guantlet 5.5, using the packet filtering capabilities,
> have the intelligence to expect a return packet, similar to
> most stateful firewalls?
>
> Thanks!
>
> -- 
> Lance Spitzner
> http://project.honeynet.org
>
> _______________________________________________
> firewall-wizards mailing list
> firewall-wizards () nfr com
> http://list.nfr.com/mailman/listinfo/firewall-wizards

-----BEGIN PGP SIGNATURE-----
Version: PGP 7.0.1

iQA/AwUBO5WeHVrj3iyPHomnEQK1FACgwkg1hPfwK4UgbV8gIPoCGK1EbLwAn134
IfAjT4s2D/LcNstdo1qaUzCJ
=dVYL
-----END PGP SIGNATURE-----


_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://list.nfr.com/mailman/listinfo/firewall-wizards