Hi folks,
Actually I am doing this for my clients. I am a Senior network
engineer/architect and by no means I consider myself a security expert (at
best a junior security engineer). I have set up lots of firewalls
(IBM/BorderWare/BorderManager) and did NT servers/workstations hardening but
I was never involved in the recommendation/selection/evaluation of security
products. So I am just trying to get through the marketing jungle!
Now my clients want me to become a security guru (sort of) within a short
period of time and this list has provided me with lots on information SO
THANK YOU TO EVERYBODY WHO TOOK THE TIME!
I understand that without security policies it will be hard for me to
implement the firewall design policy but that's the reality I am facing, the
clients (upper management) do not understand the threats and risks from the
open world! But I have to give them the best educated solution that they
are expecting from me and let them know that they only have half the
solution!
Jean Morissette
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Frederick M Avolio
Sent: Tuesday, May 04, 1999 10:46 PM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: Re: marketing hype
At 08:53 AM 5/4/99 -0400, Jean Morissette wrote:
>I am interested in Raptor/FW-1 or ELRON. What about 2nd and 3rd generation
>firewalls, 3rd generation better because newer or faster or smarter?
Hire a consultant to help you. If you have no time and you have no money,
then you'll have to do some reading. You mentioned 3 somewhat different
firewalls, which could lead one to believe that you are not sure of your
needs. There is an old but useful firewall survey on the CSI web page
(www.gocsi.com and look around for it).
I don't know what a 2nd and 3rd generation firewall is. What do *you* mean
by the terms? There are new firewalls that have come out this year that
cannot pass ICSA certification, while there are older, more established
firewalls that can and repeatedly do. Raptor is an early firewall (after
DEC SEAL and around the time of InterLock, for you history buffs) but has
of course been upgraded and enhanced numerous times to keep up with the
threats and potential business requirements.
You need to at least know what kind of network you are protecting, what the
assets are you are trying to protect, and what the business requirements
are for Internet access.
Fred
Avolio Consulting
16228 Frederick Road, PO Box 609, Lisbon, MD 21765
410-309-6910 (voice) 410-309-6911 (fax)
http://www.avolio.com/
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
