Ok, here's my two cents... you asked... I'm sure I'll ruffle
somebody's feathers, but thats what we're here for...
I don't have first-hand experience with Sidewinder, but have used
several variants of the application relay and cicuit relay firewalls.
(I strongly recommend the O'Reilly book, Building Internet Firewalls
[or something like that I think by Cheswick]...the best I've read with
practical implementation examples as well... Also Marcus Ranum's
paper 'On Internet Firewalls', which pre-dates the book). Anyway,
I'm a big fan of the TIS-Firewall Toolkit, (fwtk), and like
"rolling-my-own" because I have the source code and know exactly what
the system is doing....
Thus, when I recommend a system to a customer, I usually go with the
Gauntlet, as it is based on the fwtk, and operates basically the
same, but is commercially supported (so that when I'm done, the
customer has support other than from just me, plus this doesn't
violate the agreement for using the fwtk put forward by TIS, as its
their commercial variant).
Anyway, there is nothing I haven't been able to accomplish with the
Gauntlet/fwtk. Even though the Gauntlet/fwtk is said to only support
TCP (exceptions are UDP relays like DNS, Real Audio, etc.) via
application relays, I have found that via either the 'ipfs' for
transparent filtering and via the UDPrelay, I can implement even
those risky protocols that some customers require (I state the risks
and they still insist.. usually until they can break a legacy
application out and put it on a bastion host) in a manner as secure
as its going to get'... options that were only available in packet
filters just a short while back. This area is changing daily,
and there may be some new magic bullet out there with which I am
unfamiliar (can only read and do so much in a 24-hour day)...so again
this is my opinion alone based on personal exposure. Also, performance
is terrific, reports are flexible, and basically it adheres to the philosophy
of firewalls that I feel most comfortable -- keep it as simple as possible, and
security through obsurity is NOT the way to secure a facility...
The other firewalls, such as FW-1, raptor, etc. are really good
products, its just I feel 'at home' with the TIS software due to the
software source availability....no skeletons in the closet...
I'll now get off of my soap-box..... let the shooting gallery
begin... and apologies to those products with which I am
unfamiliar...no slander intended...
> From: "Bouchard, Alexis, 2Lt,SAM/GNCP" <BOUCHARDA @
> To: Firewall Discussion <Firewalls @
> Subject: Gauntlet vs. Sidewinder
> Date: Tue, 01 Oct 96 09:34:00 PDT
> I have to choose between Gauntlet and Sidewinder as a Firewall
> Both products meet my laundry list requirements. Both can do the
> job of
> securing my network, but which one is better? What I'm looking for
> is which one is better then the other as far as easy of use, overall
> security and support from the vender. I have all the general vender
> info, but I'm looking for strong technical reasons why I should go
> with one or the other.
> I'm a new kid on the block. This is my first Firewall experience.
> I haven't had the luxury of seeing many Firewalls in use, or being
> able to play and fiddle with them. I'm open to all input and all
> advise. I need to take advantage of someone else's experiences.
> Alexis Bouchard