> It would be fantastic if Cisco routers had all the features I feel are
> needed for a firewall router, because many of my customers already
> have Ciscos, and would like to use what they already have (or get one
> more of what they already have) for their firewall. A customer has to
> carefully weigh those factors against capability, though, and I think
> the Cisco comes up short for this particular application.
What would be your preference then for a "firewall router," given
the choice of multivendor routers? I must admit I'm curious...
> By the way, while we're talking about shortcomings of Cisco routers as
> firewall routers, let me add one more that I forgot about last night:
> logging. They don't do adequate logging of their packet filtering
I'd have to say that cisco offers much more flexibility than _most_ of
their competitors - they are one of the few that offer IP port level
filtering and also support TACACS.
Enterprise Internet Engineering tel: 703.904.2437
Herndon, Virginia USA internet: paul @