What version of the code was he running? I seem to remember reading
somewhere recently a cross-vendor firewall evaluation where the PIX came out
very well in the anti-DoS category.
Thanks,
Jay
""Sean Young"" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hi everyone,
> I have a story that wish to share with everyone. One of my friends
> works for a company that uses Cisco PIX as the firewall. This afternoon,
> he called and told me that the company firewall is experiencing a Denial
> of Service (DOS) attack. The attack is so heavy that the PIX is just
> simply gives up. The company contacts Cisco and the TAC told my friend
> that there is a bug in the Cisco PIX code and he will have to wait a
> few days for the new code to arrive. Frustrated, he decides to use his
> workstation which is running NetBSD, put in an extra NIC, shutoff all
> essential services but SSH and netfilter. Amazingly, the new BSD
> firewall withstand the DOS and connectivity is restored.
>
> The point of the story. Not everything from Cisco is good. Their code
> is just buggy as everyone else. Just because it carries the name Cisco
> doesn't mean it is safe.
>
> _________________________________________________________________
> Get your FREE download of MSN Explorer at http://explorer.msn.com
>
> _________________________________
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
_________________________________
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
