> -----Original Message-----
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, 11 May 2000 10:25 PM
> To: '[EMAIL PROTECTED]'
> Subject: TwT (Newbie)
>
>
> Hi to all
>
> is there any link or file with technical info's about the stateful
> inspection of fw-1
AFAIK the two sites to hit are still Dameon Welch's (Phoneboy) site:
http://phoneboy.area51.dk/
(General technical information on everything about FW-1)
And Lance Spitzner's site:
http://www.enteract.com/~lspitz/fwtable.html
(Interesting results gained from probing the FW-1 state table in detail)
> and the mac-layer-stateful-inspection of gauntlet
Uh...Okay, two things:
1. Gauntlet isn't (primarily) a stateful inspection box. It's supposed to be
an Application Level Gateway (go check out Matt Curtin's FW FAQ for more
information). There are some proxies in G5 which are "accelerated" by doing
a wee bit of ALG and then cutting the rest through to a fast proxy though.
2. "MAC layer stateful inspection" doesn't make much sense. Ethernet doesn't
keep any state worth checking and MAC as in "Mandatory Access Control" isn't
implemented on any supported Gauntlet OS that I know of (and it's an OS
feature with only marginal relevance to a FW box anyway).
I guess you could go and dredge through some of the "ALG and SPF One-on-One,
In a Pit with Knives - There Can Be Only One Winner....Who Will It Be? We
Sell You the Whole Seat, but you only need the EDGE (Edge, edge)..."
flamewars on this and the other FW lists. There's even been one this year.
They're not very interesting though (I know, I was there).
>
> tnx in advance for your patience with just another newbie
>
> rj
>
Cheers,
--
Ben Nagy
Network Consultant, Volante IT
PGP Key ID: 0x1A86E304 Mobile: +61 414 411 520
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
