![](https://seccdn.libravatar.org/avatar/a047adf414b670fcaaaedb4789c99df4.jpg?s=120&d=mm&r=g)
On Tuesday 24 June 2008 11:11:10 Carlos E. R. wrote:
The Tuesday 2008-06-24 at 08:24 +0200, Hans Witvliet wrote:
John Andersen wrote:
Hardware firewalls are almost always running Linux. If linux needed a firewall it wouldn't be suitable to write one with.
Some are, some are BSD, some such as Cisco, Adtran etc., are proprietary. Are there any that run Windows?
Even the quality of some are very questionable.
My team got a present: A firewall made by "blue coat", not quite a small name in this business. It was compromised in less than a day....
Uff.
Mine hasn't, as far as I know, but the company hasn't done a single updated in years.
-- Cheers, Carlos E. R.
I've no Idea why some one would think that windoze is going to provide a better firewall. Maybe you think linux based "hard" firewalls have kde etc in them. They just contain what's needed and some propriatry code. On linux I think that one of the problems is that setting up a firewall is a bit obtuse unless one is very much into linux itself. There is a program that can help a lot with that aspect - guarddog. Personally I think it should be in all distro's. At one point it was going to be included in KDE but for some reason that didn't happen. It works on an allow basis the default being deny. At least this way you can be sure of just what services are allowed and the user interface is as simple as it can be. There is also much info about on the web about making up a secure linux server that in real terms just behaves like a router. Almost any old pc will do. No monitor etc just what is needed to do the job. That's part of the problem many linux facilities tend to be rather complex and will do all sorts of things that many people don't want them to do - especially remotely. If the software isn't there it can't be run. That's a much safer solution than trying to disable it. It can't be exploited if it isn't there. BSD may be the best bet in that area. John -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org