Mark Teicher wrote:
> Question:
>
> Is installing a particular firewall more important than reviewing your
> network architecture and security policy??
>
> #########################################################
>
> #########################################################
What I thik is that you should merge all things together.
You can't choose a particular firewall if you don't know what kind of
security policy you want to implement on your network.
For example if you need teleconferencing you must choose a firewall able
to let public traffic inside your private network (installing a
particular firewall). H323 standard (for video sound and data over eth
and IP) uses 2 TCP ports for the session link, so your firewall must be
configured for this (by the way not all firewalls are able to do this).
Another example: if you implement a switched network (reviewing your
network architecture) you have to choose a particular firewall (PIX or
something else) and this
takes you to modify your security policy.
I guess I have explained you what I think: all three things must be
joined together to have a complete profile of what yuo need in terms of
network architecture, security policy and firewall type; there's no one
thing more important than another, it just depends on what (services)
you want.
Hope this is not off topics and helps
--
****************************************
Route when you can, Bridge when you must
****************************************
begin: vcard
fn: Marco Pacchiardo
n: Pacchiardo;Marco
org: Intrasoft S.r.l.
adr: V.le Regina Giovanna, 17;;;Milano;;20129;Italy
email;internet: marco .
pacchiardo @
intrasoft .
it
title: System & Networking Resp.
tel;work: +39 2 29402651
tel;fax: +39 2 29537930
note: Mobile: +39 0330 667593
x-mozilla-cpt: ;0
x-mozilla-html: FALSE
end: vcard
References:
|
|
