Umberto,
Please see my comments in line.
>Date: Tue, 06 Feb 2001 16:30:23 -0600
>From: Martin H Hoz-Salvador <[EMAIL PROTECTED]>
>Subject: Re: Firewall Load-balancing/Redundancy
>
>"Wimmer, Neil T." wrote:
> >
> > I was wondering what other people's experience has been with Rainfinity's
> > Rainwall product. We chose it at the time because it could handle more
> then
> > two interfaces on a firewall. We tried implementing version 1.5 and
> seem to
> > be having problems making it work with NAT. They have acknowledged a bug
> > they're working on now. Today I know both Cisco's Arrowpoint and Foundry
>
>BTW, some CISCO guys over there sometime boasted to me about their
>"incredibly reliable and secure embedded software", so no break-ins
>could be available...
I think you got some bad info. Yes, we at Cisco hope our software is
"incredibly reliable and secure". We do have stringent development and
test guidelines. But when a bug is found in any of our products we try to
tell customers as much as possible about it and describe a fix or at a
minimum a work around (at out web site http://www.cisco.com).
>Well. Just have to check
>http://interactiveinfosec.com/?openMenus=-1+10+60&selectedIndex=62
Bad link.
> > Network's ServerIron is suppossed to do more then two interfaces. Does
> > anyone have experience and comments on either Cisco or Foundry's solution?
We've tested an ArrowPoint load balancing solution with PIX firewalls that
produces better than GigE throughputs. And yes, there are models of the
ArrowPoint (now Cisco CSS) switch which support more than two GigE interfaces.
Please remember that the PIX 535 can be configured with GigE interfaces and
runs at GigE throughput without load balancing.
>Nope, but if your firewall is FW-1, Raptor or Gauntlet, another
>choice is StoneSoft's FullCluster: www.stonebeat.com , www.stonesoft.com -
>Their last version is quite good and stable. Check it out.
>
>Regards.
>
>- --
>Martin Humberto Hoz Salvador
>Information Security Consultant (ISS ICU, Check Point CCSE)
>C I T I
>Sendero Sur 285 Col. Contry, Monterrey, Nuevo Leon 64860, MEXICO
>Phone: +(52)(8) 357-2267 x139 Fax: +(52)(8) 357-8047
>E-mail: [EMAIL PROTECTED] WWW: http://www.citi.com.mx
>PGPKey ID: 0x0454E8D9 ICQ Number: 31631540
>GIT d- s:(+:+) a-- C+(++++)>$ SILH++++ P++ L+++ E W++ N+ o-- K- w
>O M V PS+ PE++ Y+ PGP++ t 5 X+ R tv- b+ DI+ D++ G++ e++ h-- r+ y++
>
>"The software said it requires Windows 95 or *better*, so I installed
>GNU/Linux"
Regards,
Brian
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
