|
Firewall Wizards
mailing list archives
Multiple firewalls from different manufactureres
From: "Shimon Silberschlag" <shimons () bll co il>
Date: Wed, 26 Jan 2005 18:23:21 +0200
Hello Group,
In the past, I used to hear the recommendation that an internet facing
firewall setup should include at least 2 firewalls from different
manufacturers. The reasoning behind it was that if you had a fatal
vulnerability in one of them, one that could enable an attacker to "own" the
first, the second one will resist a similar attack.
Today, when attacks are shifting towards using the already open ports on the
firewall, at the application level, do you think that such a setup is still
mandatory and/or recommended? Do you see such setups implemented? Or does
most setups include a single FW with multiple DMZs, connected directly to
the internal network? Perhaps the screened subnet variety with 2 FW, but the
same brand, is the most popular?
TIA,
Shimon Silberschlag
+972-3-9351572
+972-50-7207130
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
 By Date 
By Thread
Current thread:
|
Intro
