> Among other things the article claims: "For more than a decade,
> the Screening External Access Link, or SEAL, has kept Digitial Equipment's
> mammoth EasyNet completely impervious to outsiders".
I guess they never heard of Kevin Mitnick?
I'm not mentioning that to bash DEC's marketing, but to point
out one of the issues with respect to firewalls. Mitnick got into the
EasyNet via terminal servers initially, and pretty well infected the
whole network. It took a huge amount of effort to root him out. The
firewall had nothing to do with it, of course, since he broke in via
a different avenue into the perimeter. Moral: security must be consistent
around the entire perimeter.
[As far as I know, SEAL hasn't been in existence for a decade.
Some of the ideas used in SEAL have, but the first SEAL was installed
about 4 or so years ago.]