At 11:10 31/03/01 +0200, nicolaj Willerup wrote:
>IMO you should consider to weigh the pros and cons about the pix and FW-1.
>
>As I see it one of the pros, that certainly are in your favor, is that you
>are certified in FW-1. And if you were to switch to the PIX, then you
>would have to learn some "new" stuff about administering the PIX.
But I see one of the pros for the PIX: his boss want a PIX!
If the pix were a silly FW, then I'd say let's find args to convince his boss.
But things are just not that. The PIX is a good FW, so give your boss
a PIX (instead of giving your PISS a box:).
All we are saying, is "give PIX a chance"....
If the problem is to prove to your boss that you're good and he's dumb, then
go for IP Filter on *BSD or IP Tables on Linux.
>It's certainly not bad to learn something new, but it could be a prob
>considering that it's your firewall.
true, but there are 2 things about security:
- a part that is software/hardware independent: that's the theory behind
the stuff, and this is the hard
part.
- a part that is hw/sw dependent. and this is only an argument if the guy
is not willing to learn new things...
so it really depends on the guy...
cheers,
mouss
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
