Scot Austin replied:
> Was the Firewall-1 product the one that killed (broken) by the ping of
Well, not quite... It was a combination of things which broke the
firewall. In particular the use of a PPP-interface, the use of
TCP-wrappers AND FW-1 combined with different kind of kernel loggings.
Add to it a bad choice for a GUI and it all collapsed. I think FW-1 is a
good firewall product, but use it on a FW-1-dedicated machine only and
don't use serial interfaces on Sun's. Nothing but bad news...
Also I prefer to disable everything in Control Connection properties and
to define all the filtering rules in the Rules Base only.
KPMG EDP Auditors
>>Date: Mon, 25 Nov 1996 08:21:01 -0600
>>From: SOBRIEN @
>>Subject: Any major concerns with Firewall-1?
>>I was just informed that my company has chosen Firewall-1 as the firewall
>>product we are going to use. At this time I'm unsure if we are going to be
>>setting up the firewall, or if the vendor is.
>>Is there anything we need to be concerned about with firewall-1?
>>Any out of the ordinary experiences setting it up?