"Georges J. JAHCHAN, P. Eng." wrote: > > To offer real world protection, a stateful packet inspection > firewall needs to be supplemented by one or more of the > following: > > 1) Network intrusion detection system. > 2) Server intrusion detection. > 3) Content checking proxy (html, email, etc...) > 4) Application-level firewall (such as SecureIIS for MS IIS). > 5) Network anti-virus protection. > 6) Desktop anti-virus protection. > 7) Firewall at the desktop.
May I submit that "stateful packet inspection firewall" in the above quote should be changed to "any firewall"? Or do you claim that a proxy-based firewall will do all of that, or at least protect you against every known as well as unknown attack, making all of the above completely redundant? -- Mikael Olsson, Clavister AB Storgatan 12, Box 393, SE-891 28 �RNSK�LDSVIK, Sweden Phone: +46 (0)660 29 92 00 Mobile: +46 (0)70 26 222 05 Fax: +46 (0)660 122 50 WWW: http://www.clavister.com For bored sysadmins: http://lart.badf00d.org _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
