Re: Linux firewall vs. other products

To: debian-firewall@lists.debian.org
Subject: Re: Linux firewall vs. other products
From: Andrzej Filip <anfi@bigfoot.com>
Date: Fri, 14 Jul 2000 14:02:54 +0200
Message-id: <[🔎] 396F016E.F3CF4692@bigfoot.com>
References: <[🔎] 20000712212459.A1155@hp.homelan.ch> <[🔎] 20000713095516.A31744@dnd.utwente.nl> <[🔎] 20000713171311.A949@hp.homelan.ch>

Sven Burgener wrote:
> Remco van de Meent wrote:
> > Don't forget that ipchains configures a packet filter in the kernel,
> > not a 'real' firewall.
> 
> It's used for dealing with packets, yes, I know. But what other types of
> firewalls are there? Pardon my ignorance, but all I know on the subject
> of 'firewall' is 'packet blocking'. :)

"Packet filter" is a "lower form" of a firewall.

"Real" (and costly) firewall can:
* detect port scanning
* when scanning/hacking is detected attacker is redirected
  to "trap system" to give the system time to locate the
  source of attact
* scan connections at protocol level e.g. check
  if mail is transfered via a connection to smtp port
...

-- 
Andrzej (Andrew) A. Filip           http://bigfoot.com/~anfi
anfi@bigfoot.com    anfi@polbox.com    anfi@sdf.lonestar.org
Postings:  http://deja.com/profile.xp?author=Andrzej%20Filip

Reply to:

References:
- Linux firewall vs. other products
  - From: Sven Burgener <svenb@bluewin.ch>
- Re: Linux firewall vs. other products
  - From: Remco van de Meent <remco@dnd.utwente.nl>
- Re: Linux firewall vs. other products
  - From: Sven Burgener <svenb@bluewin.ch>

Prev by Date: Re: Linux firewall vs. other products
Next by Date: Re: Linux firewall vs. other products
Previous by thread: Re: Linux firewall vs. other products
Next by thread: Re: Linux firewall vs. other products
Index(es):
- Date
- Thread