Hello everybody,
I am testing Securemote connection on my company netwrok. I got
a problem that all file greater than about 1.5k bytes failed to transmit
through the securemote session and the connection eventally time-out
and dropped. I got and same "big file failure" problem when I did web
http://www.interactiveinfosec.com/?openMenus=-1+10+60selectedIndex=61
Go down to the "Comparing Firewalls and Firewall Technologies" section.
Note that PIX is more of a packet filtering/stateful inspection type of
firewall, whereas Gauntlet is a proxy-based firewall.
// Chris
[EMAIL PROTECTED]
Ben Nagy said:
#Can Sidewinder be considered for "general purpose" installs with its rep
for
#price / complexity?
Sidewinder is definitely a complex product but a good firewall admin should
be able to handle a complex product. One of the things that I really like
about the Sidewinder is the
Hi Ben,
I'd like to see a reasonable comparison as well - though I don't expect we'll really
see it. From experience all three boxes work fine in so-called "normal"
conditions...but fail miserably when the conditions are not "normal"...
Gauntlet seems quite good at supporting small offices,
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, 30 January 2001 10:24
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: Firewalls - Raptor, Gauntlet, Sidewinder
[...]
Gauntlet seems quite good at supporting small offices, but
fails
We run Symantec (Axent) Raptor on a twin 296Mhz Sparc CPU 512MB ram) Solaris platform.
We support 5,000 users and 1.3 million hits(files) a day, 2/3 Internal users, 1/3
visitors to our web sites.
It rarely gets above 40% CPU usage so capacity is not too much of a problem. This
gives about
Here's the environment:
HP-UX, 512MB RAM, Firewall-1 4.0
Is there a theoretical maximum size or number of rules that I can have? If
so, what are the parameters and input that go into this calculation? How
can I increase the rulebase size if necessary? Any and all help is
appreciated.
Hi!
I'm trying to set up traffic shaping on my firewall.
The firewall is also serving as a ftp-server and is connected to my
provider
through a DSL-Link (dynamic ip), 768k down- and 128k upstream.
What I want to do is:
Split my (upstream) link in two classes using tc, one with 128k, one
with 0k.
Hello. I am building a Firewall and have some questions about how to implement
it. The basic firewall is a FreeBSD box running squid for transparent proxy,
IPFW for dummynet to rate limit syn's, and IPF as my main statefull packet
filter. The problem I have is with putting this into
