XPost: comp.security.firewalls   
   From: badnews@hansenonline.net   
      
   On Thu, 13 Nov 2003 08:42:42 -0500, Kilani spoketh   
      
   >Incredibly, the Symantec VPN 100 cannot filter out Pings (ICMP Echo   
   >Requests).   When I talked to Symantec product support, they admitted   
   >it cannot.  As soon as the VPN 100 was in the loop, hack attacks began   
   >because of the inability to filter out pings.  When I put the Linksys   
   >router back in the loop, the attacks ended.  It's incredible that   
   >Symantec would sell a product that cannot block ICMP echo requests.   
   >This product is NOT suitable as a firewall, even though Symantec   
   >markets it as such.   Bad job, Symantec.   
   >   
      
   Bullshit. The VPN 100 is a good firewall, and much better than any   
   Linksys product. The reason why you're seeing more in the logs of the   
   Symantec device is because it logs more. Unless you're using a third   
   party tool with the Linksys router, you'll hardly see any events in the   
   log.   
      
   Stealth is overrated and irrelevant.   
      
   The product is very suitable as a firewall, and it actually _IS_ a   
   firewall, unlike most of the products in the Linksys catalog...   
      
      
   Lars M. Hansen   
   www.hansenonline.net   
      
   --- SoupGate-Win32 v1.05   
    * Origin: you cannot sedate... all the things you hate (1:229/2)