[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[no subject]
- <!--x-content-type: text/plain -->
- <!--x-date: Wed Jul 7 21:53:17 2004 -->
- <!--x-from-r13: nyr ng fcvaareqbt.pbz (Rnivq Vnzz) -->
- <!--x-message-id: [email protected] -->
- <!--x-reference: 04Jul7.114037-0400_edt.315249-[email protected] --> "http://www.w3.org/TR/html4/loose.dtd">
- <!--x-subject: [ale] OT: Firewall purchase -->
- <li><em>date</em>: Wed Jul 7 21:53:17 2004</li>
- <li><em>from</em>: ale at spinnerdog.com (David Hamm)</li>
- <li><em>in-reply-to</em>: <<a href="msg00208.html">[email protected]</a>></li>
- <li><em>references</em>: <<a href="msg00208.html">[email protected]</a>></li>
- <li><em>subject</em>: [ale] OT: Firewall purchase</li>
I'm cirtanly interested in a PIX if it does ospf and costs around $500.
> Number of clients?
The network isn't that big only about 100 users total.
> Do you need a DMZ port?
I don't use DMZ ports I'd prefer using ACLs in the internet router or an
additional firewall to produce a DMZ.
> Number of remote VPN sessions?
Fifty VPN sessions would be plenty. But I'd like to use IPSEC for both
workstation to network and network to network VPNs.
> How much total throughput do you need?
Currently the company has a single T1 so any firewall will handle it.
> 3DES or DES?
I allways pick 3DES but I can't really say it is necessary. Most of the
sessions will be ICA anyway. So it's not quite as crackable as telnet or
some of the other.
Could I get some sorta rack mount kit to go with it??
On Wednesday 07 July 2004 11:40 am, Jonathan Rickman wrote:
> > -----Original Message-----
> > From: ale-bounces at ale.org [<a rel="nofollow" href="mailto:ale-bounces";>mailto:ale-bounces</a> at ale.org] On
> > Behalf Of David Hamm
> > Sent: Tuesday, July 06, 2004 7:32 PM
> > To: Atlanta Linux Enthusiasts
> > Subject: Re: [ale] OT: Firewall purchase
> >
> > Sure, the network be hind the firewall is Frame-Relay, all
> > the remotes come back through the firewall for internet
> > access. I chose ospf since there were version conflicts with
> > RIP. Now that OSPF is up and running I've found I like it.
> > Its faster and more flexible.
>
> Do you need a DMZ port?
> How much total throughput do you need?
> 3DES or DES?
> VPN Throughput?
>
> Number of remote VPN sessions?
>
> A Cisco PIX will take care of your needs handily and you'd be surprised at
> how robust the entry level units are. A lot of folks shy away from the PIX
> because of percieved expenses. PIX solutions start in the $400 range. Many
> folks skim right past the 501 and 506 because they can't believe that that
> itty bitty wittle box can handle their big manly network. :) Sure, pricing
> is high from the 515 on up, but the entry models fit the bill nicely for
> some pretty big networks. In my opinion, if the network you are describing
> is so big/busy that a PIX 501 or 506 can't handle it, then you can afford
> to come off the dime. Of course, this does mean that user licensing comes
> into play, but it is not really that bad overall. If you can answer those
> questions definitively, I'll give you the exact model number and price.
>
> --
> Jonathan
>
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> <a rel="nofollow" href="http://www.ale.org/mailman/listinfo/ale";>http://www.ale.org/mailman/listinfo/ale</a>
</pre>
<!--X-Body-of-Message-End-->
<!--X-MsgBody-End-->
<!--X-Follow-Ups-->
<hr>
<ul><li><strong>Follow-Ups</strong>:
<ul>
<li><strong><a name="00249" href="msg00249.html">[ale] OT: Firewall purchase</a></strong>
<ul><li><em>From:</em> jdr at xcorps.net (Jonathan Rickman)</li></ul></li>
<li><strong><a name="00251" href="msg00251.html">[ale] OT: Firewall purchase</a></strong>
<ul><li><em>From:</em> bob at verysecurelinux.com (Bob Toxen)</li></ul></li>
</ul></li></ul>
<!--X-Follow-Ups-End-->
<!--X-References-->
<ul><li><strong>References</strong>:
<ul>
<li><strong><a name="00208" href="msg00208.html">[ale] OT: Firewall purchase</a></strong>
<ul><li><em>From:</em> jdr at xcorps.net (Jonathan Rickman)</li></ul></li>
</ul></li></ul>
<!--X-References-End-->
<!--X-BotPNI-->
<ul>
<li>Prev by Date:
<strong><a href="msg00236.html">[ale] back to Slack It is here!!!!!!!!!!!!! Version 10.0</a></strong>
</li>
<li>Next by Date:
<strong><a href="msg00238.html">[ale] ipcop1.3+anonymous proxy</a></strong>
</li>
<li>Previous by thread:
<strong><a href="msg00210.html">[ale] OT: Firewall purchase</a></strong>
</li>
<li>Next by thread:
<strong><a href="msg00249.html">[ale] OT: Firewall purchase</a></strong>
</li>
<li>Index(es):
<ul>
<li><a href="maillist.html#00237"><strong>Date</strong></a></li>
<li><a href="threads.html#00237"><strong>Thread</strong></a></li>
</ul>
</li>
</ul>
<!--X-BotPNI-End-->
<!--X-User-Footer-->
<!--X-User-Footer-End-->
</body>
</html>