Great Circle Associates Firewalls
(March 1996) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Re: Firewalls: NT versus UNIX
From: "Rev. Ben" <samman-ben @ CS . YALE . EDU>
Date: Tue, 12 Mar 1996 12:28:52 -0500 (EST)
To: firewalls @ greatcircle . com
In-reply-to: <9603121452 . AA20390 @ ig4 . att . att . com> 
> Looks to me that you'll need a FreeBSD or Linux box on the
> clone-of-the month that's cheapest.  There have been some excellent
> postings in months past that detail things to "harden" the OS such as
> using read-only file systems, chroot etc.  Accompany that with free or
> public domain proxies and servers of your choice.

Speaking of this, how do people feel about using this route as a 'cheap' 
firewall for quick and dirty distribution within an internal network--say 
as gateway machines to internal networks?

MIS could periodically distribute CD-ROMs with the current configuration 
of the month to all the different sites and have them run them behind the 
firewall--make for a significantly harder internal network.

Ben Samman .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
  .
 samman @
 cs .
 yale .
 edu
"If what Proust says is true, that happiness is the absence of fever, then 
I will never know happiness. For I am possessed by a fever for knowledge, 
experience, and creation."                                      -Anais Nin
Want to give a soon-to-be college grad a job?         Mail me for a resume
Je voudrais travailler en France.  J'ai deja obtenir une autorisation de
travail.


> > Low Cost Firewall:  $2,000 US (hardware/software included)
> > 
> > Supported Services: 
> > 1) TCP/IP filtering mechanism that allows for priority queuing
> > 2) HTTP caching proxy support (internal and external)
> > 3) FTP caching proxy support (internal and external)
> > 4) GOPHER caching proxy support (internal and external)
> > 5) Telnet proxy support  (internal and external)
> > 6) SMTP secured mail transport mechanism (inbound and outbound)
> > 7) DNS Server Capability (forwarding, caching, and secondary support)
> > 8) HTTP Server Support for External/Internal WWW pages
> > 9) MBONE tunnel endpoint (secure internal broadcast)
> > 10) IRC Client and Server support (internal and external)
> > 11) WAIS caching proxy support (internal and external)
> > 12) POP mail support
> > 13) Automatic Status reports and cache management features.
> > 14) ALL ON THE SAME MACHINE!
Follow-Ups:
References:
Indexed By Date Previous: Re: Firewalls: NT versus UNIX
From: "Rev. Ben" <samman-ben @ CS . YALE . EDU>
Next: Suscribe firewalls-digest
From: Simonas Galarreta <sgalarreta @ gmd . com . pe>
Indexed By Thread Previous: Re: Firewalls: NT versus UNIX
From: mdr @ vodka . sse . att . com
Next: Re: Firewalls: NT versus UNIX
From: Adam Shostack <adam @ homeport . org>
Google
 
Search Internet Search www.greatcircle.com