Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Firewalls
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Looking for a simple firewall with VPN functionality

from [Robert Synak] Network Security [Permanent Link]
Subject: RE: Looking for a simple firewall with VPN functionality
Date: Mon, 18 Apr 2005 16:31:57 -0700 
I'll just reissue my whole missive as I was wrong the first time I put
it out:


It looks like latter releases of ScreenOS (Netscreen's code) will do

DDNS

It looks like latter releases of FortiOS (Fortinet's code) will do

DDNS

I'm not saying either actually will do DDNS, as I haven't set up either
for DDNS - so don't sue me if the products don't live up to expectations
- but both purportedly do DDNS including native connections to ddns.org.

So forget everything I wrote suggesting Netscren and Fortinet don't do
DDNS - they appear to - and suggesting you install an update client on a
desktop computer.  I was wrong and disseminating mis-information.

And I agree with the guy who recommended the Fortinet firewall.  Both
Fortinet and Netscreen are ASIC based, great for all sorts of reasons.
And the Netscreen is definitely the most flexible of firewalls.  But,
given that your original message suggested a DMZ is optional, not
requisite, I suspect you don't need Netscreen's flexibility.  Fortinet
is quite likely your best bet for security, flexibility, price-point and
ease of use (esp. if you're already familiar with Netscreen's
interface).

Have a good day.
____________________________________________
Robert Synak, CISSP, CCNA, SCSA, MCSE
Security Engineer
ANITIAN  ENTERPRISE  SECURITY

3800 SW Cedar Hills Blvd, Suite 280
Beaverton, OR 97005
503-644-5656 Office
503-807-4429 Cell
503-214-8069 Fax
www.anitian.com
____________________________________________
 

-----Original Message-----
From: Robert Synak [mailto:robert.synak@anitian.com] 
Sent: Monday, April 18, 2005 3:40 PM
To: firewalls@securityfocus.com
Subject: FW: Looking for a simple firewall with VPN functionality

I stand corrected:  it looks like Netscreen does do DDNS in the later
code releases.  If you like Netscreen take a closer look at it and
confirm it does the DynDNS (I don't have one within reach so I can't
login and confirm it for you, but the latest release docs suggest it
does DynDNS.)  I think they're great firewalls.
____________________________________________
Robert Synak, CISSP, CCNA, SCSA, MCSE
Security Engineer
ANITIAN  ENTERPRISE  SECURITY

3800 SW Cedar Hills Blvd, Suite 280
Beaverton, OR 97005
503-644-5656 Office
503-807-4429 Cell
503-214-8069 Fax
www.anitian.com
____________________________________________
 

-----Original Message-----
From: Robert Synak 
Sent: Monday, April 18, 2005 3:32 PM
To: 'firewalls@securityfocus.com'
Cc: 'dda@cbsd.donetsk.ua'
Subject: RE: Looking for a simple firewall with VPN functionality

Netscreen doesn't do Dynamic DNS (neither does Fortinet, which is
Netscreen at about half the cost.)  Dynamic DNS sounds like a good
choice for your client.  DNS is definitely the easiest way to direct the
VPN clients to the gateway.

You can install simple and free clients to keep something like DynDNS
updated.  For instance, here's a list of clients that will keep you
updated on DynDNS.org:
http://www.dyndns.org/support/clients/dyndns.html.  (DynDNS.org is @:
http://www.dyndns.org/services/dns/dyndns) ... if those clients don't
suit you, more clients are available on www.sourceforge.net.  (I don't
endorse any particular dynamic DNS service, but DynDNS was the one you
were asking about.)

Good luck.
____________________________________________
Robert Synak, CISSP, CCNA, SCSA, MCSE
Security Engineer
ANITIAN  ENTERPRISE  SECURITY

3800 SW Cedar Hills Blvd, Suite 280
Beaverton, OR 97005
503-644-5656 Office
503-807-4429 Cell
503-214-8069 Fax
www.anitian.com
____________________________________________
 

-----Original Message-----
From: Dmytro Dvornichenko [mailto:dda@cbsd.donetsk.ua] 
Sent: Thursday, April 14, 2005 11:03 PM
To: firewalls@securityfocus.com
Subject: Re: Looking for a simple firewall with VPN functionality

Look at Planet VRT-311 or DLink DI-804HV.

On Wednesday 13 April 2005 18:15, Daniel Kirschsieper wrote:

Hi everyone,

one of my customers needs a firewall with VPN but they do not have a

static

IP-Address with their internet connection and I doubt they are willing

to

pay getting one. So I am looking for a small device, maybe with DMZ

port,

that supports DynDNS.

My favourite one, esp. because of the price, is a Cyberguard SG570

(former

Snapgear) but I am not sure if it provides DynDNS functionality. The

other

option I have explored so far is a Netscreen device.

So does anyone of you know if these firewalls support DynDNS and if

not, do

you have any other suggestions?



------------------------------------------------------------------------
--

Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it with real-world attacks from 
CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708

to learn more.
------------------------------------------------------------------------
--




------------------------------------------------------------------------
--

Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it with real-world attacks from 
CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708

to learn more.
------------------------------------------------------------------------
--




--------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it with real-world attacks from 
CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 
to learn more.
--------------------------------------------------------------------------
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Question - Advice needed., Byron L. Sonne
Next by Date:  Re: Problem connecting to CheckPoint using SmartDashboard, Robert Hajime Lanning
Previous by Thread:  FW: Looking for a simple firewall with VPN functionality, Robert Synak
Next by Thread:  RE: Looking for a simple firewall with VPN functionality, Greg Merideth
Indexes:  [Date] [Thread] [Top] [All Lists]