February 14, 2001 02:14 PM

Firewalls with VPN

Rating: (0)
Allen Jones
Windows IT Pro
InstantDoc ID #19686
Integrated firewall and VPN solutions ease administration of two important functions
Assets and threats to assets on the Internet are increasing at a staggering rate, so we must protect our networks from dangers both known and unknown. One popular tool for accomplishing this task is firewalls. These networking products have evolved a lot over the past several years. Simply blocking unwanted traffic and passing authorized traffic between networks isn't enough for today's firewalls. We expect more than just packet filtering. We want important security functions, such as Denial of Service (DoS) attack prevention and intrusion-detection systems.

Mo...

ARTICLE TOOLS

Want to use this article? Click here for options!

You must be a paid Professional Member to access this entire article.

Already a Professional Member? Please log in now:

NOT A PROFESSIONAL MEMBER? YOU CHOOSE:

Monthly or Annual

Professional Membership

VIP Membership

Compare Member Benefits

Add a Comment

It nor work under win2k server!

Sergey11/7/2003 7:46:22 PM


Early in the review process, I had to define exactly what category of products to test so that I could be sure I was comparing apples to apples. I decided to highlight four popular software-based network firewalls whose vendors also offered a VPN that integrated with the firewall. I'd gladly review UNIX products and appliance-based solutions, but reviewing them all in one article wasn't an option.


--Allen Jones,/i>

Allen Jones 6/6/2001 9:51:40 AM


Articles and reviews about firewalls always seem to lump products by platform. For example, an article about Windows NT firewalls won't include standalone boxes such
as the products that WatchGuard Technologies and SonicWALL offer; UNIX products also get left out. Can an NT-based network use a UNIX firewall or a SonicWALL appliance? Of course it can. Consider expanding Allen Jones's Lab Reports: "Firewalls with VPN" (March 2001) to include other firewall platforms.


Phil Wells 6/6/2001 9:51:40 AM

A good review except you don't really discuss the overall security of the products short of the mention of Checkpoint's secureclient.

You should have at least discussed the varieties of mechanisms of the various firewalls, application proxy, stateful inspection, etc.

I must admit I am biased to the Raptor product. It's a tough cookie to break into. I do not beliecve that there is one case where a hacker broke the security of a Raptor firewall. The same can not be said for the market leader, Checkpoint. Your article shed no light on this complex subject.

My $.02,



David McKinney 3/1/2001 9:23:24 AM

I took a few seconds to review your article. In your assessment of FireWall-1/VPN-1 you are wrong on a number of points.
Check Point does indeed include wizards for defining rulebases. If you click on File, New Policy and enter a policy name, click on security and address translation, on the right hand side of the dialog box, you will see "helpers" including Wizard, Template and empty policy.
You also fail to point out that the standard remote client SecuRemote is $FREE$.
Performance of the Log viewer is greatly dependent upon you hardware and address resolution capabilities. If your firewall machine is the same as your management machine then performance will be adversly effected. Secondly if you have "options, resolve addresses" turned on, then the performance of the log viewer is directly relational to the speed of your management servers DNS resolution capabilities. Besides which would you rather have performance and security or near-real-time reporting???

Gregor Munro 2/21/2001 3:26:39 PM

You must log on before posting a comment.

Are you a new visitor? Register Here

windows server 2008 login scripts

I have 2 win2k8 servers one pdc and bdc. The domain is exampledom.com They are connected to 2 iscsi luns which replicate each other. We are running ac...222-96118

advertisement

GOOGLE LINKS
SPONSORED LINKS
FEATURED LINKS

White Papers

Your remote offices contain valuable electronic data – are they adequately protected? Learn how proven technologies can reliably and cost-effectively back up a branch office from a central location, in real time, to disk or tape, and even utilize existing backup solutions.

Downloads

PacketTrap IT is a comprehensive and affordable network management and application monitoring solution that solves problems associated with bandwidth, network and application performance, and connectivity. Gain insight into your network - try PacketTrapIT free for 21 days!

Web Seminars

IT administrators have to solve a myriad of problems. This web seminar outlines the ten most common systems management pains - including managing highly distributed systems and dealing with data theft/loss – and the best practices to address each.

eLearning Series

We bring the experts direct to you to share their real-world perspective and expertise. During each event, three sessions stream in real time, so you can learn, ask questions, and get solutions.
Upcoming event: Getting the Most with Exchange 2010 with Paul Robichaux

Subscribe to Windows IT Pro!

DevProConnections ITTV Left-Brain SharePointPro Connections SQL Server Magazine SuperSite for Windows Windows IT Pro

© Penton Media, Inc.

Home About Us Advertise Customer Service Privacy Statement Subscribe/Renew Terms Of Use

Windows is a trademark of the Microsoft group of companies. Windows IT Pro is used by Penton Media Inc. under license from owner.