[ale] OT: Firewall purchase
Chris Fowler
cfowler at outpostsentinel.com
Wed Jul 7 09:18:49 EDT 2004
I'm in the network management business and the $50,000 is a soft costs.
I've seen customers that considered them hard and I've seen those that
have considered them soft.
On Wed, 2004-07-07 at 00:04, Bob Toxen wrote:
> On Sun, Jul 04, 2004 at 04:15:18PM -0400, David Hamm wrote:
> > Thanks for the links and suggestions but this firewall is for a client and
> > building a custom firewall will not be price competitive; Especially if you
> > consider the ease of use available for $100 from Netgear and D-Link.
> A custom firewall + no break-in is cost competitive as compared to $100
> for the Netgear toy + $50,000 to recover from the break-in.
>
> Bob Toxen
> bob at verysecurelinux.com [Please use for email to me]
> http://www.verysecurelinux.com [Network&Linux/Unix security consulting]
> http://www.realworldlinuxsecurity.com [My book:"Real World Linux Security 2/e"]
> Quality Linux & UNIX security and SysAdmin & software consulting since 1990.
>
> "Microsoft: Unsafe at any clock speed!"
> -- Bob Toxen 10/03/2002
>
>
> > On Sunday 04 July 2004 03:40 pm, Dow Hurst wrote:
> > > David Hamm wrote:
> > > > Hi,
> > > >
> > > > I'm looking for a firewall that supports IPSEC for VPN and OSPF.
> > > > Netgear has
> > > > stuff I found attractive but with no OSPF support. Moving parts (ie
> > > > fans and
> > > > disks ), and user licensing are out. Anyone have any suggestions?
> > > >
> > > > Thanks.
> > > > _______________________________________________
> > > > Ale mailing list
> > > > Ale at ale.org
> > > > http://www.ale.org/mailman/listinfo/ale
> > >
> > > Look at building it yourself using Slackware, Bob Toxen's second edition
> > > of his book, and a Epia based fanless supersmall machine with dual
> > > builtin NICs. His book has drop in iptables rules that are excellent.
> > > Once you get that far then going thru the IPSEC Howto is not too
> > > difficult. Just involves a kernel module compile and insertion.
> > >
> > >
> > >
> > > Links:
> > > http://www.tldp.org/HOWTO/VPN-Masquerade-HOWTO.html#toc3
> > > http://www.impsec.org/linux/masquerade/ip_masq_vpn.html
> > > http://www.onlamp.com/pub/a/bsd/2004/03/11/Big_Scary_Daemons.html (this
> > > is one idea)
> > >
> > >
> > > _______________________________________________
> > > Ale mailing list
> > > Ale at ale.org
> > > http://www.ale.org/mailman/listinfo/ale
> > _______________________________________________
> > Ale mailing list
> > Ale at ale.org
> > http://www.ale.org/mailman/listinfo/ale
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> http://www.ale.org/mailman/listinfo/ale
More information about the Ale
mailing list