[oclug][OT] Hardware firewalls
Bart Trojanowski
bart-oclug at jukie.net
Wed Jan 22 15:56:26 EST 2003
* Shad Young <shad.young at sympatico.ca> [030122 14:34]:
> What do you all think about those hardware firewall/routers that run in
> the sub 300 dollar category? Do they work? Are they actually secure and
> do the give you fine control over policies? Are they good enough to
> deploy in a professional Linux environment?
Personally I think they are OK for very plain-vanilla situations. Once
you try to do something with them that they are not designed to do you
are stuck. Examples:
you want more ports
you want more internal subnets
you want to have a DMZ
you want to add wi-fi
you want to do QoS
you want to create a tunnel to another network
you want to run IPsec
you want to encapsulate internal services in ssl
you want to ...
Some of them will do some of the items on the list. But my 486 firewall
will do all or none of these. For this reason I don't have a hardware
router.
B.
--
WebSig: http://www.jukie.net/~bart/sig/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://tux.oclug.on.ca/pipermail/oclug/attachments/20030122/d8459f6f/attachment.bin
More information about the OCLUG
mailing list