I've been wallowing in an analysis paralysis between Firewall-1 and one
or two other firewalls (ok...Gauntlet & CyberGuard..you twisted my arm).
I've been leaning toward Gauntlet, partially based upon an a suspicion I
have of a packet filtering product like Firewall-1. There seem to be
little whisperings about possible exploits for the packet based
products, yet I've not seen anything substantial to back that up.
Is there anything to all this? No I don't care to discuss the fact that
Checkpoint is an Israeli company (or whether Marcus Ranum works for the
Masaad :) . I really mean to find out if FW1 and stateful inspection are
any less "secure" than a proxy technology like Gauntlet. I've always
told management that the biggest risk with any of these products is
proper setup and administration, not the actual firewall technology.
Feedback, tips and tea leave readings welcome...