** Reply to message from Patrick Beart <[EMAIL PROTECTED]> on Sat, 16 Mar 2002 11:44:39 -0800
> > > On Fri, 15 Mar 2002, Pieter De Wit wrote: > >> > >> > Why, what is wrong with ipchains/iptables ? > >> > > > > My answer is that it's "software", not hardware. > > I'm new to the whole "security" thing, but I've learned that > a hardware appliance is better than software, if only for the fact > that someone is technically already IN the machine when they hit the > firewall software. With a hardware appliance there's a physical > barrier ahead of your machines. > > I use the Netscreen products. I think that they're really > good at smacking down bad traffic. Moreover, I'm happy that Netscreen > CREATES IPSec, it doesn't just pass it on. > > My $0.02 Nothing to stop you from running an iptables based firewall on a box ahead of your network. jb -- Jack Bowling mailto: [EMAIL PROTECTED] _______________________________________________ Redhat-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
