Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Firewalls
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Pix Management

from [Yuval Baron] Network Security [Permanent Link]
Subject: Re: Pix Management
Date: 25 Nov 2004 00:59:35 -0000 
In-Reply-To: 
<7E64000045968D47A4DBF878309536513C3887@smai50002p.le500.loto-quebec.com>

If you want to make sure that your policy is safe, try AlgoSec


Received: (qmail 480 invoked from network); 18 Nov 2004 00:09:52 -0000
Received: from lists.securityfocus.com (205.206.231.19)
 by mail.securityfocus.com with SMTP; 18 Nov 2004 00:09:52 -0000
Received: (qmail 12717 invoked by alias); 17 Nov 2004 17:21:24 -0000
Mailing-List: contact firewalls-help@securityfocus.com; run by ezmlm
Precedence: bulk
X-No-Archive: yes
List-Id: <firewalls.list-id.securityfocus.com>
List-Post: <mailto:firewalls@securityfocus.com>
List-Help: <mailto:firewalls-help@securityfocus.com>
List-Unsubscribe: <mailto:firewalls-unsubscribe@securityfocus.com>
List-Subscribe: <mailto:firewalls-subscribe@securityfocus.com>
Delivered-To: mailing list firewalls@securityfocus.com
Delivered-To: moderator for firewalls@securityfocus.com
Received: (qmail 27859 invoked from network); 17 Nov 2004 09:51:33 -0000
Message-ID: 
<7E64000045968D47A4DBF878309536513C3887@smai50002p.le500.loto-quebec.com>
From: Thibaudeau Simon <Simon.Thibaudeau@loto-quebec.com>
To: "'firewalls@securityfocus.com'" <firewalls@securityfocus.com>
Subject: Pix Management
Date: Wed, 17 Nov 2004 11:22:31 -0500
MIME-Version: 1.0
X-Mailer: Internet Mail Service (5.5.2658.3)
Content-Type: text/plain


We have a few PIXs that we currently manage by hand, saving configs on a
TFTP and trying to keep up with the changes the best we can. We bought
Cisco's Firewall Management Console extension for CiscoWorks and it does not
do a very good job at keeping the configs clean, much like PDM is pretty
crap at it too. Also the Firewall MC is terrible in terms of performance and
change management. I wondered if any of you knew of a better solution to
manage PIXs. Something in which a security officer would be able to
visualize the config easily (a la PDM without all the changes and perverse
effects it does) as well as keeping tabs on the changes that are made to the
config. I have read here people talking about piping the config in a CVS and
work from there, that would work but also require an amount of coding time
that I might not have (also the fact that I have never worked with a CVS.)
Eventually we would like to have a change autorisation/validation procedure
that might be integrated too.

Is there any integrated solution that might do what I want? Is there any
tools that might help me getting what I want? 

Thanks for your help


Simon Thibaudeau
simon.thibaudeau@loto-quebec.com
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Follow Up : New Firewall called Hotbrick LB2VPN, Eric McCarty
Next by Date:  firewalling- routing question, security
Previous by Thread:  Re: Pix Management, sin
Next by Thread:  Pix Alias command help needed., Chad Thomsen
Indexes:  [Date] [Thread] [Top] [All Lists]