Hi steve,
I never tried Raptor but heard a lot of goods things on it.
I've played with Gauntlet version 3.0, 3.2A, 4.1
I like 'cause i'm a unix guy.
let's try to answer your questions and after i'll give U my point of vue..
At 12:10 12/01/99 -0600, you wrote:
>Hello,
>
>I am currently looking for a new firewall. We are currently running IBM
>Firewall v3.1 on an old PowerPC. We have a new loaded Sparc Ultra 10 box
>that we are going to run the firewall on.
>
>My problem is the software. I wanted to go with Checkpoint, but since I am
>at a government agency, we have a short list of options. We have narrowed
>our choices down to Axent's Raptor, and Network Associates Gauntlet.
>
>I am used to a packet filtering firewall, so this will be a large change in
>concept for us. I was wondering if I could get some insight from so folks
>that have used these firewalls.
good you've got that on gauntlet. works good easy to configure
>
>Here are some of my concerns,
> a. We have quite a few "Home Grown" apps that use odd ports. Can I make
>my own proxies?
yes you can with plug gateways. It means that you forward your trafic to
someone who knows how to deal with it.
plug-gw: permit-hosts 10.10.10.10 -port "your old port" -plug-to
10.10.10.20 -port "your old port"
There is another one but with authentification.
> b. We do quite a bit of NT networking through our firewall. I know Raptor
>6 has NT proxies built in, how about Gauntlet?
No NT proxies built in (maybe in 4.2 which is the current version). Can't
help you on that point.
> c. I have around 1800 users, over half of which have apps that connect to
>remote servers. Will these firewalls handle this workload?
Not sure. Can you give more informations. (I'm french and not sure of my
english ;))
>
>Thanks in advance for any info
>
>Steve Connolly
>[EMAIL PROTECTED]
>
>-
>[To unsubscribe, send mail to [EMAIL PROTECTED] with
>"unsubscribe firewalls" in the body of the message.]
>
>
In fact the thing is that with Gauntlet you have a proxy firewall and you need
to like unix. 'cause it's unix made off. So it helps to understand the
product.
You can do VPN and encryption. That's a good product.
The bad thing is NAI/TIS support which is "une putain de merde" (I don't
know the way to say it in english) It means that the only answer they are
able to give is :
" yes we know those bugs, but we don't have a single patch to correct
it.
The only way for use is to buy our new Gauntler release which will came in
1 month"
If you see what I want to say. I have 10 calls in may mailbox that NAI/TIS
is not able to answer to.
So if you want to have a good support don't choose Gauntlet....
Hope it helps
Cordialement.
_________ Anthony Homo (mailto:[EMAIL PROTECTED]) __________
Systems & Networks Security Engineer
Apogee Communications
113 Boulevard de Stalingrad
69100 Villeurbanne
Tel: (+33) 4 78 17 38 38
Fax: (+33) 4 78 17 38 39
___ I haven't lost my mind, it's backed up on tape somewhere. ___
\|/
(oo)
____o00(_)00o____________________________________________________
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
