IBM discontinued the firewall for AS/400. IBM however does have something
in the works with Check Point software, but no official release has come out
to date, although Check Point runs on the AIX OS, but that only helps the
RS600 customers. The current best bet is to put a firewall in front of the
AS/400 - you shouldn't have your AS/400 connected directly to the Internet
anyway, and as always it's a bad idea to run a firewall on the same machine
that runs your other apps.
Nathan A. Long
Sales/Marketing
eServices@Cornerstone Solutions, Inc.
219.496.8259 x 316
[EMAIL PROTECTED]
www.cornerstones.com
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]] On Behalf Of
[EMAIL PROTECTED]
Sent: Wednesday, May 03, 2000 5:20 PM
To: Michael Sorbera
Cc: Carlos Moran; [EMAIL PROTECTED]
Subject: Re: Does AS/400 need a firewall?
IBM does have a firewall software package available for the AS/400.l
AS/400 is no harder to get into than any other O/S. It has a command
line/UI utility like Admintool for Solaris or SAM for HP.
AS/400's are much harder to tighten due to the tight integration with a
couple of specialized apps that could possibly run off the box.
/m
"Michael Sorbera" <[EMAIL PROTECTED]>
Sent by: [EMAIL PROTECTED]
05/03/00 02:54 PM
To: "Carlos Moran" <[EMAIL PROTECTED]>,
<[EMAIL PROTECTED]>
cc:
Subject: Re: Does AS/400 need a firewall?
Carlos,
I have an AS/400 running a web site. It's no different than any other web
server except for the OS itself. It needs all the same protection that
you'd give any other OS. I will get slightly on the side that OS/400, IF
configured correctly, is a lot harder to get into than a lot of other
OS's.
But don't be lulled into a sense of "I'm okay" because of that.
If your colleagues still think they don't need a firewall, e-mail me off
list and I'll let your folks talk to me on the phone.
Later,
Michael Sorbera
Webmaster
> Hello,
>
> I have to give semi-anonymous IP remote access to an
> AS/400, and I feel like I need a firewall to protect
> it.
>
> Some people here think that the AS/400 is so secure
> that it doesn't need a firewall, because the remote
> access will be connected to a secondary Ethernet board
> that won't be reachable from the main network.
>
> I wasn't able to find hard evidence to support my
> claim - I couldn't find any AS/400 vulnerability
> report in the Internet.
>
> So I would be glad if someone handed me an incident
> report, or some evidence that the AS/400 is not
> unvulnerable - OR IS IT?
>
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
