|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
RE: IPsec vs any personal software firewall
From: Hernan Marcelo Racciatti (hracciatti
hotmail.com)
Date: Wed Oct 01 2003 - 07:28:50 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
>In W2k SP 4 you can disable all traffic except ISAKMP.
I think that this is one of the main 'technical' drawbacks when thinking
about replacing firewalls by IPSec filters, but not the only one.
Anyone who has spent enough time working with IPSec filter will probably
have noticed the lack of certain advantages not conceptually implemented
in IPSec filters.
In fact, I believe it is quite clear that Microsoft was not going to
develop an IPSec filter-enabled firewall, at least for current versions.
This is more an improvement to "TCP Filtering" on NT4.
IPSec filters will probably be enhanced in future versions of Windows (At
least that's on my wish list ;).
Meanwhile, I will keep using IPSec filters as "Security Measures in the
Deep" while setting up a GOOD firewall in front of that :)
Greetings,
Hernán Marcelo Racciatti
[mailto:hracciattihotmail.com]
[http://www.hernanracciatti.com.ar]
_________________________________________________________________
¿Estás buscando un auto nuevo? http://www.yupimsn.com/autos/
---------------------------------------------------------------------------
---------------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]