Andy Watts wrote:
> As far as I understand the firewall that comes with the netra is
> Firewall-first. This is scaled down version of firewall-1. When I say
> scaled down I really should worthless.
> Only five sessions allowed through the firewall. A long delay between one
> session ending and a new session being allowed again. Only five services,
> http, ftp, telnet, gopher (i think) and the fifth service is definable.
> There is no authentication, network address translation or encryption.
> This is really some smooth marketing, anyone who buys a netra and is
> concerned about security will find they need to firewall-1 light version
> quite soon.
It sounds as if you've had your share of troubles with the netra
solution. I was wondering if you could forward some advise. I am looking
into a Netra solution for one of my contracts. All I need is http
firewall service between one http server on the netra box and 400 known
clients. What I was wondering, is can you configure firewall first for
secure http? If so, how much athourity do you have over the traffic, how
configurable is it? With the light version can you specify which port
you wish to use for each services' traffic, i.e. can I use the fifth
service for my own TCP communications protocol? Also, does the netra
come with all the Solaris 2.5 modules for a development system or is
that cut down as well?