Hi:
Just a couple of questions for you experts out there:
1. My company has been looking for a fast, easy to administer firewall for
some time now. We need to network about 40 offices and don't need a lot of
administration overhead. We must have the capability of performing
encryption
(we might need more than DES now! ;-) between our offices and corporate hub
if
necessary. Also some of our sites are located in South America and Europe.
We
also need full NAT functionality (one to one, one to many, many to one, etc.
etc.) as we may want to offer inbound services and some IP remapping at the
remote sites.
2. Could you use something like Linux with the IPSec extensions in France?
3. Are there any Firewalls that can remap URLs to IPs based on the
$ENV{'HTTP_HOST'} variable or will we need to implement this on the Web
Server? I know not all Web Browsers support this.
4. Has anyone had any success using Dynamic DNS clients (www.dyndns.com,
www.ml.org) under a firewall on NT or Sun? Is this feasible as a method to
remap sites domain names in real time?
5. What about remote access (non-UDP). Especially outside of the United
States. Are there any clients that use more than DES encryption? How much
more
secure is 3DES than standard DES. We just want to secure POP, SMTP, HTTP,
NNTP, FTP and Telnet. Should I worry if the remote access encryption
technology is proprietary?
6. Is FTP inherently hard to secure with Stateful Inspection type Firewalls?
7. What key distribution method should we look for? Is a standard emerging?
Thanks in advance for any help. Sorry if these questions have been answered
here before.
Kristi Moore
---------------------
Forwarded message:
From: mikech @
avana .
net
To: kmoore1824 @
aol .
com
Date: 97-06-20 22:18:29 EDT
------------------------
From: mikech @
avana .
net
Subject: Did you get it?
Date: Fri, 20 Jun 1997 18:07:40 -0500
To: kmoore1824 @
aol .
com
Hey Kristi:
Send this message to Firewalls @
GreatCircle .
com
_______________________________________________________________________
Hi:
Just a couple of questions for you experts out there:
1. My company has been looking for a fast, easy to administer firewall for
some time now. We need to network about 40 offices and don't need a lot of
administration overhead. We must have the capability of performing encryption
(we might need more than DES now! ;-) between our offices and corporate hub
if
necessary. Also some of our sites are located in South America and Europe. We
also need full NAT functionality (one to one, one to many, many to one, etc.
etc.) as we may want to offer inbound services and some IP remapping at the
remote sites.
2. Could you use something like Linux with the IPSec extensions in France?
3. Are there any Firewalls that can remap URLs to IPs based on the
$ENV{'HTTP_HOST'} variable or will we need to implement this on the Web
Server? I know not all Web Browsers support this.
4. Has anyone had any success using Dynamic DNS clients (www.dyndns.com,
www.ml.org) under a firewall on NT or Sun? Is this feasible as a method to
remap sites domain names in real time?
5. What about remote access (non-UDP). Especially outside of the United
States. Are there any clients that use more than DES encryption? How much
more
secure is 3DES than standard DES. We just want to secure POP, SMTP, HTTP,
NNTP, FTP and Telnet. Should I worry if the remote access encryption
technology is proprietary?
6. Is FTP inherently hard to secure with Stateful Inspection type Firewalls?
7. What key distribution method should we look for? Is a standard emerging?
Thanks in advance for any help. Sorry if these questions have been answered
here before.
Kristi Moore
______________________________________________________________________
I would send it with the subject line:
"Connecting 40 remote sites securely?"
Thanks Kristi,
Mike
--
18:07:41
06/20/97
_______________________________________________________________________
Michael W. Chalkley Tel: +1.770.823.7846
ZapNet! Inc. Fax: +1.770.475.7640
Suite 400-120 E-mail: mikech @
well .
com
10945 State Bridge Road mikech @
avana .
net
Alpharetta, GA 30202 (wireless) mikech @
radiomail .
net
---------------End of Original Message-----------------
--
19:16:33
06/20/97
_______________________________________________________________________
Michael W. Chalkley Tel: +1.770.823.7846
ZapNet! Inc. Fax: +1.770.475.7640
Suite 400-120 E-mail: mikech @
well .
com
10945 State Bridge Road mikech @
avana .
net
Alpharetta, GA 30202 (wireless) mikech @
radiomail .
net
Follow-Ups:
|
|
