I agree with a lot of what you say, but the original questions was which OS, UNIX or NT? As the word "knowing" seems to have touched a raw nerve, perhaps "understanding" would have been a better choice, or will that just make thing worse :-( I also use PIX and Cisco 16xx with the firewall feature set, all of which have had their problems. I haven't come across any vendor who has particularly inspired confidence. The ideal solution, as you seem to suggest, is multiple devices of different architectures, whether it be router + host, or host + different host with different FW s/w. Andy - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]
