home bbs files messages ]

Forums before death by AOL, social media and spammers... "We can't have nice things"

   comp.dcom.vpn      VPN protocols, clients, awesomeness      2,348 messages   

[   << oldest   |   < older   |   list   |   newer >   |   newest >>   ]

   Message 477 of 2,348   
   icc to dangeru98dousdt@ATsbcglobal.DOTnet   
   Re: Symantec VPN 100 Warning   
   13 Nov 03 10:47:06   
   
   XPost: comp.security.firewalls   
   From: icc85@hotmail.com   
      
   Humm SYMC 100 not a firewall hummm.   
   I disagree.  Just because a router is "pingable" doesn't mean its hackable.   
   If that were so then we could say the same thing about Nortel,Cisco, and   
   Janpur backbone routers.  The fact you can PING a router/firewall doesn't   
   make it a weak product in the least.  Most will filter ICMP traffic just   
   like the SYMC 100 box does.   It looks at it says humm ICMP ok have a nice   
   day.   
   If your worried that you will get DoS'ed then having a unpingable WAN still   
   won't help you.   
   I would suggest you spend some time with this box and its syslog feature so   
   you can see just how powerful its really is.   
      
   ICC   
   "pheonix1t"  wrote in message   
   news:kwNsb.312$rz7.19@newssvr22.news.prodigy.com...   
   > Lars M. Hansen wrote:   
   >   
   > > On Thu, 13 Nov 2003 08:42:42 -0500, Kilani spoketh   
   > >   
   > >   
   > >>Incredibly, the Symantec VPN 100 cannot filter out Pings (ICMP Echo   
   > >>Requests).   When I talked to Symantec product support, they admitted   
   > >>it cannot.  As soon as the VPN 100 was in the loop, hack attacks began   
   > >>because of the inability to filter out pings.  When I put the Linksys   
   > >>router back in the loop, the attacks ended.  It's incredible that   
   > >>Symantec would sell a product that cannot block ICMP echo requests.   
   > >>This product is NOT suitable as a firewall, even though Symantec   
   > >>markets it as such.   Bad job, Symantec.   
   > >>   
   > >   
   > >   
   > > Bullshit. The VPN 100 is a good firewall, and much better than any   
   > > Linksys product. The reason why you're seeing more in the logs of the   
   > > Symantec device is because it logs more.   
   > I agree with Lars on this one, I've setup several Symantec routers and   
   > they work very well.  It's been almost 2 years on 1 site and no security   
   > problems at all.  If you go into the admin page on the router, there is   
   > a section where you can set how much details the router can email to you   
   > as far as what it's seeing.  It can report many more events than the   
   > linksys boxes - I think this may be misleading you.   
   >   
   >   
   >   Unless you're using a third   
   > > party tool with the Linksys router, you'll hardly see any events in the   
   > > log.   
   > >   
   > > Stealth is overrated and irrelevant.   
   > >   
   > > The product is very suitable as a firewall, and it actually _IS_ a   
   > > firewall, unlike most of the products in the Linksys catalog...   
   > >   
   > >   
   > > Lars M. Hansen   
   > > www.hansenonline.net   
   >   
      
   --- SoupGate-Win32 v1.05   
    * Origin: you cannot sedate... all the things you hate (1:229/2)   

[   << oldest   |   < older   |   list   |   newer >   |   newest >>   ]


(c) 1994,  bbs@darkrealms.ca