Great Circle Associates Firewalls
(January 1996) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: RE: firewalls reviews/comparisons
From: "RDA" <RDA @ etf . it>
Date: Wed, 10 Jan 96 09:47:34
To: firewalls @ greatcircle . com 
______________________________ Forward Header __________________________________
Subject: RE: firewalls reviews/comparisons
Author:  Neil <CARSON @
 rmcs .
 cranfield .
 ac .
 uk> at INTERNET
Date:    1/9/96 3:41 PM


     
>> 2)  I've been searching for information on the best firewall to purchase 
>for > our
>> needs and have not come across any reviews/comparisons on which is
>> best (I have a list of all of the firewalls available and their 
>descriptions > but
>> not any comparisons).   Anyone know of any reviews and where to find 
>them? > We require a firewall which would could support a very high 
>throughput so > we would probably require a hardware-based firewall.   
>Configuring our
>> front-end router to act as a firewall isn't a practical option.  
>Any > information would be
>> appreciated.   Thanks,
     
>There was a review of commercial firewalls in (I think) Byte or something 
>like that a little while ago, the machines being the TIS Gauntlet, Border 
>Ware and Firewall 1. Perhaps someone with a better memory than me can 
>clarify.
     
>> Brian Hescock
>> hescockb @
 86aw4 .
 ramstein .
 af .
 mil

Hello, just for info, the Byte issue mentioned is from April '95 under the 
'Network security' section.  As a newbie myself, I found it quite useful.

I'm hoping to set up a firewall based on NT 3.51 which will also act as 
a WWW proxy. Does anyone have any inside info on the expected 
release/functionalities of the Microsoft Catapult package ?  Since most 
of the clients on the net I need to protect are running IPX (some run 
both IPX and TCP/IP), I would like to know the opinion of the experts on 
the possibility of a Web proxy machine also doing a 'protocol 
conversion'. i.e. surely it's theoretically possible for the WWW clients 
on the protected net to connect to the proxy over IPX (or Netbeui) and 
for the proxy to go out of a second card on TCP/IP to the Internet ???  
I would imagine that blocking all TCP/IP through the firewall in this 
way would go a long way to protecting sensitive UNIX hosts on the 
inside.  Has this been done before ? Am I seriously misguided ?  Thanks 
for any opinions.

Richard Anstey.


=============================================================================
========   E-mail messages from the European Training Foundation    =========
========          shall not in any way be legally binding.          =========
=============================================================================
Follow-Ups:
Indexed By Date Previous: SunOS, NIS and some intruder
From: Carolina Elortegui <celort @ kuma . ciens . ucv . ve>
Next: Re: Mitnick & the TCP Sequence Number Attack on Shimomura
From: Dave Roberts <djr @ saa-cons . co . uk>
Indexed By Thread Previous: RE: firewalls reviews/comparisons
From: Neil <CARSON @ rmcs . cranfield . ac . uk>
Next: RE: firewalls reviews/comparisons
From: Rabid Wombat <wombat @ mcfeely . bsfs . org>
Google
 
Search Internet Search www.greatcircle.com