[27535] in resnet
Next Generation Firewalls.
daemon@ATHENA.MIT.EDU (Chris Davis)
Tue Apr 10 13:11:37 2012
Content-Language: en-US
Content-Type: multipart/alternative; boundary="_000_AFF7E56B606814458FDD7379332233491C6CFCA0SVEXCMB01princi_"
MIME-Version: 1.0
Message-ID: <AFF7E56B606814458FDD7379332233491C6CFCA0@SV-EXCMB-01.principia.local>
Date: Tue, 10 Apr 2012 16:44:15 +0000
Reply-To: Resnet Forum <RESNET-L@listserv.nd.edu>
From: Chris Davis <Chris.Davis@PRIN.EDU>
To: RESNET-L@listserv.nd.edu
--_000_AFF7E56B606814458FDD7379332233491C6CFCA0SVEXCMB01princi_
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Anyone using NGFWs. Firewalls with application identification, IPS and oth=
er protection like Anti-malware, reputation checking, and other protections=
in a single step check in parallel? Two that come to mind are Palo Alto a=
nd Fortinet. I would love to know your experience with them, especially in=
regard to writing rules based on Applications (one of the NGFW's biggest f=
eatures).
How have they been for you? Do you miss the firewall you replaced? Any ho=
rror stories or is it all accolades?
Have you started moving all your protocol based rules to application based =
rules yet? If not, why?
I'm interested in the good and not so good.
Thanks.
Chris
___________________________________________________
You are subscribed to the ResNet-L mailing list.
To subscribe, unsubscribe or search the archives,
go to http://LISTSERV.ND.EDU/archives/resnet-l.html
___________________________________________________
--_000_AFF7E56B606814458FDD7379332233491C6CFCA0SVEXCMB01princi_
Content-Type: text/html; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
<html xmlns:v=3D"urn:schemas-microsoft-com:vml" xmlns:o=3D"urn:schemas-micr=
osoft-com:office:office" xmlns:w=3D"urn:schemas-microsoft-com:office:word" =
xmlns:m=3D"http://schemas.microsoft.com/office/2004/12/omml" xmlns=3D"http:=
//www.w3.org/TR/REC-html40">
<head>
<meta http-equiv=3D"Content-Type" content=3D"text/html; charset=3Dus-ascii"=
>
<meta name=3D"Generator" content=3D"Microsoft Word 14 (filtered medium)">
<style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Papyrus;
panose-1:3 7 5 2 6 5 2 3 2 5;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri","sans-serif";}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
span.EmailStyle17
{mso-style-type:personal-compose;
font-family:Papyrus;
color:windowtext;
font-weight:normal;
font-style:normal;}
.MsoChpDefault
{mso-style-type:export-only;
font-family:"Calibri","sans-serif";}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext=3D"edit" spidmax=3D"1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext=3D"edit">
<o:idmap v:ext=3D"edit" data=3D"1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang=3D"EN-US" link=3D"blue" vlink=3D"purple">
<div class=3D"WordSection1">
<p class=3D"MsoNormal"><span style=3D"font-size:12.0pt">Anyone using NGFWs.=
Firewalls with application identification, IPS and other protection =
like Anti-malware, reputation checking, and other protections in a single s=
tep check in parallel? Two that come to
mind are Palo Alto and Fortinet. I would love to know your experienc=
e with them, especially in regard to writing rules based on Applications (o=
ne of the NGFW’s biggest features).
<o:p></o:p></span></p>
<p class=3D"MsoNormal"><span style=3D"font-size:12.0pt"><o:p> </o:p></=
span></p>
<p class=3D"MsoNormal"><span style=3D"font-size:12.0pt">How have they been =
for you? Do you miss the firewall you replaced? Any horror stor=
ies or is it all accolades?
<o:p></o:p></span></p>
<p class=3D"MsoNormal"><span style=3D"font-size:12.0pt"><o:p> </o:p></=
span></p>
<p class=3D"MsoNormal"><span style=3D"font-size:12.0pt">Have you started mo=
ving all your protocol based rules to application based rules yet? If=
not, why?
<o:p></o:p></span></p>
<p class=3D"MsoNormal"><span style=3D"font-size:12.0pt"><o:p> </o:p></=
span></p>
<p class=3D"MsoNormal"><span style=3D"font-size:12.0pt">I’m intereste=
d in the good and not so good.<o:p></o:p></span></p>
<p class=3D"MsoNormal"><span style=3D"font-size:12.0pt"><o:p> </o:p></=
span></p>
<p class=3D"MsoNormal"><span style=3D"font-size:12.0pt">Thanks.<o:p></o:p><=
/span></p>
<p class=3D"MsoNormal"><span style=3D"font-size:12.0pt">Chris<o:p></o:p></s=
pan></p>
</div>
</body>
</html>
___________________________________________________
You are subscribed to the ResNet-L mailing list.
<p>
To subscribe, unsubscribe or search the archives,
go to http://LISTSERV.ND.EDU/archives/resnet-l.html
___________________________________________________
--_000_AFF7E56B606814458FDD7379332233491C6CFCA0SVEXCMB01princi_--
