[nsp] Network Firewall

Joe Lin jlin at doradosoftware.com
Wed Jun 16 21:33:48 EDT 2004


Lawrence,

I've deployed both cisco and netscreen myself.   I found netscreen more
intuitive in the configuration.  The hardest part in my deployment was
to convince upper management that it is ok to go with a non-C vendor!

Joe


-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net
[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Lawrence Wong
Sent: Wednesday, June 16, 2004 7:23 AM
To: cisco-nsp at puck.nether.net
Subject: [nsp] Network Firewall

Hi all,

I am currently looking for a firewall to install in
our corporate network. Our network mainly runs on
Cisco hardware which made me consider using Cisco
firewalls as well. We use public IPs hence no NAT is
required.

Does anyone have any experience to share on the Cisco
PIX firewalls? Or any other firewalls to recommend?

I noticed that compared to other vendors, Cisco PIX
seems to lack in the area of SYN/UDP DDoS flood
protection? The closest which I read from it's manual
for 6.3 is the usage of some paraments in the "static"
command to indirectly manage flooding, but static is
used in NAT mode.

TIA!


	
		
__________________________________
Do you Yahoo!?
New and Improved Yahoo! Mail - 100MB free storage!
http://promotions.yahoo.com/new_mail 
_______________________________________________
cisco-nsp mailing list  cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/




More information about the cisco-nsp mailing list