On Wed, 10 Jan 1996, RDA wrote:
>
> ______________________________ Forward Header __________________________________
> Subject: RE: firewalls reviews/comparisons
> Author: Neil <CARSON @
rmcs .
cranfield .
ac .
uk> at INTERNET
> Date: 1/9/96 3:41 PM
>
>
>
> >> 2) I've been searching for information on the best firewall to purchase
> >for > our
> >> needs and have not come across any reviews/comparisons on which is
> >> best (I have a list of all of the firewalls available and their
> >descriptions > but
> >> not any comparisons). Anyone know of any reviews and where to find
> >them? > We require a firewall which would could support a very high
> >throughput so > we would probably require a hardware-based firewall.
> >Configuring our
> >> front-end router to act as a firewall isn't a practical option.
> >Any > information would be
> >> appreciated. Thanks,
>
> >There was a review of commercial firewalls in (I think) Byte or something
> >like that a little while ago, the machines being the TIS Gauntlet, Border
> >Ware and Firewall 1. Perhaps someone with a better memory than me can
> >clarify.
>
> >> Brian Hescock
> >> hescockb @
86aw4 .
ramstein .
af .
mil
>
> Hello, just for info, the Byte issue mentioned is from April '95 under the
> 'Network security' section. As a newbie myself, I found it quite useful.
>
> I'm hoping to set up a firewall based on NT 3.51 which will also act as
> a WWW proxy. Does anyone have any inside info on the expected
> release/functionalities of the Microsoft Catapult package ? Since most
> of the clients on the net I need to protect are running IPX (some run
> both IPX and TCP/IP), I would like to know the opinion of the experts on
> the possibility of a Web proxy machine also doing a 'protocol
> conversion'. i.e. surely it's theoretically possible for the WWW clients
> on the protected net to connect to the proxy over IPX (or Netbeui) and
> for the proxy to go out of a second card on TCP/IP to the Internet ???
> I would imagine that blocking all TCP/IP through the firewall in this
> way would go a long way to protecting sensitive UNIX hosts on the
> inside. Has this been done before ? Am I seriously misguided ? Thanks
> for any opinions.
You might want to look into the Firefox Novix gateway. It converts
IPX/SPX to TCP/IP, and can allocate IP addresses on a dynamic or static
basis. It runs on Novell fileservers, which I assume you have, since
you're running IPX. It also runs on Novell's MPR if you don't want to
impact your servers. I don't know if they have an NT version - I haven't
been keeping close tabs on them.
Phone number is 800-230-6090/408-321-8344 or info @
firefox .
com .
(I have no commercial interest in this company)
- Wombat
>
> Richard Anstey.
>
>
> =============================================================================
> ======== E-mail messages from the European Training Foundation =========
> ======== shall not in any way be legally binding. =========
> =============================================================================
>
References:
|
|
