Am Do, den 14.10.2004 schrieb Moon, Curtis um 17:12: > We have a management station using R55 HF08 on win2003. > > We have a very simple firewall setup. Was just wondering > if anyone was using OpenBSD as a firewall solution. > Is it to hard to maintain? Other major problems? > http://www.openbsd.org/
The biggest problem is probably the lack of a management-framework. You'll have to create that yourself, with rsync/rdist and ssh. Perhaps combined with a rules-editor (there's a qt-based on that also understands OpenBSD's pf). This might be an even bigger problem with VPN-setup and maintenance. Also, the "Application Intelligence" will have to come from 3rd-party proxies (squid, smtp, ftp-proxy etc.) - but maybe you want that anyway. BTW: Does FW1 make use of 3rd-party Crypto-Accellerator cards like OpenBSD or is that also something you've got to pay extra for ? If you only have a single site, with a single firewall and no special requirements, I'd go for an appliance anyway. Rainer -- =================================================== ~ Rainer Duffner - [EMAIL PROTECTED] ~ ~ Freising - Munich - Germany ~ ~ Unix - Linux - BSD - OpenSource - Security ~ ~ http://www.ultra-secure.de/~rainer/pubkey.pgp ~ =================================================== ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
