Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Firewalls
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Question - Advice needed.

from [Byron L. Sonne] Network Security [Permanent Link]
Subject: Re: Question - Advice needed.
Date: Mon, 18 Apr 2005 19:23:49 -0400
The question is. What is the best Firewall to use?

That's subjective. Depends on the skill level of the individual who will be maintaining it, what kind of SLA management wants from vendors, etc.

I myself prefer pf from OpenBSD. Fast, simple, easy to use, powerful and free.

Can a firewall be stuck _on_ the server?

Yes, but that is bad practice. Remember the maxim 'one machine, one job'. It makes it harder to defeat your security by minimizing attack vectors, though in practice, there is no such thing as being truly secure.

The most important thing is the ability to remotely manage (ie. From
another country)

Anything can be remotely managed, the question is what kind of interface is desired for that remote management? With something like pf, all you need to do is ssh into the box and fire up an editor. Very little to go wrong.

Of course web interfaces can be tacked on for that kind of thing, but if you're managing and configuring your firewall (or planning to) over the web then you're being foolish.

--------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it with real-world attacks from CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 to learn more.
--------------------------------------------------------------------------

[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Problem connecting to CheckPoint using SmartDashboard, Volker Tanger
Next by Date:  RE: Looking for a simple firewall with VPN functionality, Robert Synak
Previous by Thread:  Question - Advice needed., Andrew Rogers
Next by Thread:  Re: Question - Advice needed., Mark Owen
Indexes:  [Date] [Thread] [Top] [All Lists]