Hi Ben, I'd like to see a reasonable comparison as well - though I don't expect we'll really see it. From experience all three boxes work fine in so-called "normal" conditions...but fail miserably when the conditions are not "normal"... Gauntlet seems quite good at supporting small offices, but fails without warning when you try and firewall an large org (read one org, 4500 staff at one site, 1.3million http requests/day). NAI's support is useless since they now have so few skilled people left (we tried to get support for an unexplainable problem with the proxies dying - it was one week before christmas - no consultants available to fly from Australia)... Raptor will possibly go the same way. Sidewinder has looked attractive to us, though lack of support in SEAsia is a problem. Which brings us to FW-1... lots of support, even competing providers in places like Singapore... sure the program is not great and it installs insecure out of the box... but its stable, not part of a big non-firewall conglomerate and there's lots and lots of support. Mind you I'm still not keen on it, we'll probably go to a configuration where web traffic goes out through hardened squid based firewalls, incoming web traffic goes through to a DMZ made from FW-1 (outside) and Gauntlet (inside).. that way we get stable fast web access (squid), fast access for our customers (fw-1) and decent security for our internal networks.. Cheers, Bret At 04:40 PM 29/01/01 +1030, you wrote: Sorry to drag this one up again, but I'd also be very interested if anyone has performed a technical eval of these three particular products. Articles don't really interest me that much - what I'd like is comments from personal experience. -- Technical Incursion Countermeasures www.ticm.com The Insider www.ticm.com/info/insider _________________________________________________ The simple way to read all your emails at ThatWeb http://www.thatweb.com - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]
