Re: [PEN-TEST] Testing of Netscreen firewalls?

["Jensen, Greg" <Greg_Jensen () NAI COM>]

Robert,

We market the Netscreen product as a cheaper, yet less secure, alternative
to our Gauntlet Firewall/WebShield E-ppliance.  We have had great success
with the product as it is one of the most well-rounded low-end solutions we
have put our hands on.  I would recomend it if money is tight.   There are
cases where you don't need a sledgehammer to put a nail in, so in a case
like that, the Netscreen does fine. In those cases where you have high
liabilities if proprietary information is stolen, or e-biz servers can be
compromised, you really should stick with the higher level boxes such as
Gauntlet/E-ppliance or other "proxy" based firewalls that cut the connection
from the untrusted to the trusted networks.

-----Original Message-----
From: Masse, Robert [mailto:rmasse () RICHTER CA]
Sent: Friday, September 08, 2000 1:45 PM
To: PEN-TEST () SECURITYFOCUS COM
Subject: [PEN-TEST] Testing of Netscreen firewalls?


Hi

Has anyone had any negative experience with the Netscreen 10/100 products?
I am starting to look at a cheaper alternative
to PIX and FW1 (for the smaller companies) and wanted to know what you think
of the product.

I checked around the security portals for bugs or exploits and found none
(however the product is relatively new and
not common yet).

Thanks in advance,

Robert


Robert Masse, CISSP
Chief Technical Officer

Richter Security Inc.
2 Place Alexis Nihon, suite 905
Montreal, Quebec, Canada
+514 934-3566 Direct
+514 934-3406 Fax