Re: firewall
On Thursday 05 July 2012 18:26:12 Doug wrote:
> On 07/05/2012 08:31 AM, Atıf CEYLAN wrote:
> > On 2012-07-05 10:05, Anthony Campbell wrote:
> >> On 04 Jul 2012, Brad Alexander wrote:
> >>> On Wed, Jul 4, 2012 at 2:15 AM, Ralf Mardorf
> >>>
> >>> <ralf.mardorf@alice-dsl.net <mailto:ralf.mardorf@alice-dsl.net>> wrote:
> >>>> On Wed, 2012-07-04 at 11:19 +0800, lina wrote:
<humour>
[snip Lina's request for recommendation on firewalls]
[snip Ralf Mardorf's dry answer]
[snip Brad Alexander's disagreement]
[snip Anthony Campbell's anecdotal experience]
[Atif CEYLAN's statement follows]
> > Your problem is not a firewall problem. Firewall doesn't mean IPS/IDS
> > or L7 Filter. Also a firewall must be a netfilter, NAT, routing etc.
> >
> > Inbound or outbound network traffic and packets are permitted or
> > blocked/rejected or port forwarding by firewall.
> >
> > If there is a vulnerability on your OS or apps you must use IPS/IDS or
> > L7 filter or UTM (netfilter + ips + any stuff...)
IDS = Intrusion Detection System
IPS = Intrusion Prevention System
L7-Filter see https://en.wikipedia.org/wiki/L7-filter
UTM can be anything from "Unified Threat Management" over "University of
Toronto at Mississauga (Canada)" to "Universal Transport Medium"
see http://www.acronymfinder.com/UTM.html
HTH
SCNR
GWPF
[Doug's puzzled comment follows]
>
> For someone who doesn't understand firewalls in the first place--I'm
> one, also--your answer might as well be written in Chinese!
>
> --doug
</humour>
Kind regards, Eike
Reply to: