On Mon, 6 Mar 2000, Ashley Culver wrote:
> Two products seem to stand out. The Lucent 'Brick', which acts as a bridge
> rather than a router and the Netscreen-100, which has a 'transparent' mode.
> The Lucent product seems pretty clear about itself. It bridges rather than
> routes, therefore no subnet splitting. The netscreen is not quite so clear
> at this point. I wondered if anyone had any working experience of these two
> products and could shed a bit of light on how good they are in practice.
I recently evaluated the Netscreen 100, and was perturbed to discover
that their remote administration is via http and telnet. Not exactly
good for my peace of mind.
Netscreen recommends administration via VPN, which requires either their
VPN client (plus additional setup), or an IPsec compliant client. As of
last check, they only have a VPN client available for Win95/98/NT - there's
a linux one in the works, and they think that the Solaris 8 VPN client
will work.
By comparisson with other products who provide encrypted management via
a (comparatively) secure client, with minimal setup, it's hardly a stellar
solution.
Netscreen's v2.0 is supposed to incorporate ssh - the web interface will
continue to be via http.
cheers!
==========================================================================
"A cat spends her life conflicted between a deep, passionate and profound
desire for fish and an equally deep, passionate and profound desire to
avoid getting wet. This is the defining metaphor of my life right now."
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
