root2DSL.TELOCITY.COM

• Next message: Pete Jacob: "Windows 2000 Professional and firewalls / Black ICE"
• Previous message: Kelly, Owen (CAP, CARD): "Securing Backoffice servers"
• In reply to: Ken Grossman: "Windows 2000 Professional and firewalls"
• Reply: Rick Sullivan: "Re: Windows 2000 Professional and firewalls"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

If you have simple rules like "deny all incoming" and "allow all
outbound keeping state" and "don't allow anything stupid IN or OUT no
matter what" and don't run any Internet-accessable servers, OpenBSD is a
pretty quick and secure solution.

If you do run servers, use a third NIC on the OpenBSD box and put your
servers on this DMZ, and get ready for a IPFilter and IPNat quiz.

Don't forget to send them the $30.

I do this with OpenBSD on my DSL line at home.

-----------------------------------------------------------------------

Ken Grossman wrote:
>
> I have been tasked with investigating setting up a firewall for my office.
> In some of the lectures on firewalls that I have attended in the past, the
> lecturer was against using Windows NT as the underlying OS of the machine
> that is running the firewall software due to its security problems. Has
> there been any evidence that Windows 2000 is a more secure and viable
> firewall OS than Windows NT? I would prefer to use UNIX/Linux as the
> underlying OS but would like to have some supporting evidence. Thanks.
>
> Ken Grossman

• Next message: Pete Jacob: "Windows 2000 Professional and firewalls / Black ICE"
• Previous message: Kelly, Owen (CAP, CARD): "Securing Backoffice servers"
• In reply to: Ken Grossman: "Windows 2000 Professional and firewalls"
• Reply: Rick Sullivan: "Re: Windows 2000 Professional and firewalls"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]