Just comparing an operating system with all kinds of software and a kernel
that supports just about anything vs a stripped down o/s designed
specifically for the hardware. It tends to have less of a chance of
crashing with some other service/daemon/module or whatever running
simultaneously. Just my 2 cents worth & my personal opinion based on past
experience. I've been running PIX firewalls since 95 and never had one
crash even once.
----- Original Message -----
From: "Howard C. Berkowitz" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, February 01, 2001 1:21 PM
Subject: Re: "Wire speed" (wasRe: What should I block???)
> >I would agree here. Things like maximum concurrent connections and how
many
> >connections/second need to be considered as well. Personally I prefer
> >hardware simply for the stability factor. There's nothing like having to
go
> >reboot the firewall server at 2am...grrr. Been there, done that, burned
the
> >t-shirt.
>
> But again I will raise the question "what is hardware?" No practical
> firewall is going to run completely from ROM or in ASICs. If it did,
> you couldn't update it against continuing threats.
>
> Is the distinction you are trying to make between real-time and
> general-purpose, or extremely fault tolerant versus commercial grade
> software?
>
> _________________________________
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
_________________________________
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
