[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Anyone studying for Cisco certs?

To: silug-discuss@silug.org
Subject: Re: Anyone studying for Cisco certs?
From: fiaid@quasi-sane.com
Date: Fri, 16 May 2003 09:56:52 -0500 (CDT)
In-Reply-To: <AEFE1ACE6F9FD144B68643846AD5AC24525663@spisrv01.cquestamerica.local>
Organization: Southern Illinois Linux Users Group
Reply-To: silug-discuss@silug.org
Sender: silug-discuss-owner@silug.org

> What's not to believe?  I'll admit I have limited experience with other
> types of firewalls, but I'm willing to learn.  

I'll answer for Mike808 while he is gibbering.  PIX are terrible for their 
lack fo stateful packet inspection.  Many firewalls have this, Checkpoint 
FW-1, IP Filter, etc.  A pix might be good for internal blocking where you 
really don't need all that much, but occasionally the mess up your QoS 
and CoS rules.  I am not sure if they can even do IP spoof checking, which 
is nice so that you can't get people to flood your network with spoofed 
packets causing a reflective drop attack.

Tighe

-- 
Tighe Schlottog         workape         fiaid
"Nothing is too cruel if it is funny enough."


-
To unsubscribe, send email to majordomo@silug.org with
"unsubscribe silug-discuss" in the body.

References:
- Re: Anyone studying for Cisco certs?
  - From: "Joe Tosetti" <jtosetti@CQuestAmerica.org>

Prev by Date: Re: Anyone studying for Cisco certs?
Next by Date: Re: Anyone studying for cisco certs?
Prev by thread: Re: Anyone studying for Cisco certs?
Next by thread: Re: Anyone studying for cisco certs?
Index(es):
- Date
- Thread