Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email email@example.com
From: Bernd Eckenfels (listslina.inka.de)
Date: Sat Oct 06 2001 - 00:06:47 CDT
On Fri, Oct 05, 2001 at 09:52:40AM -0700, Jason Yuan wrote:
> We get calls from these vendors / or from our customers all the time.
> However, I have doubts about some of the vendor's security implementation.
> How would I know if it were just packet filtering technology? (Some of
> them were selling hubs last year!). Yet I do NOT have a good way to
> evaulate the truthfulness about stateful inspection.
you have to ask them, if they mean stateful filtering, which is reasonable
asumption to be true for all, or if they mean inspection. The later involves
a programming language which is able to filter on content.
So to proof the first, you just try to send non-syn packets through the
firewall or check if ftp-data-like connections (from port 20) are possible.
To proof the later, you ask them to show you the language feature which can
be used to filter.
Firewalls mailing list