[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Smooth wall - more detailed
- To: <linux-il(at-nospam)linux.org.il>
- Subject: Smooth wall - more detailed
- From: Dani Arbel <dani(at-nospam)techunix.technion.ac.il>
- Date: Wed, 29 Aug 2001 11:00:28 +0300
- Delivered-To: linux.org.il-linux-il@linux.org.il
- Organization: Technion CC
- Reply-To: darbel(at-nospam)techunix.technion.ac.il
- Sender: linux-il-bounce(at-nospam)cs.huji.ac.il
Hi!
So I looked into it a bit more (started the web gui)
Configuring fw access rules: not much easier than adding script lines in an
IPtables setup, with less options. Only tcp/udp protocols (in the gui).
no ADSL support at all (even pptp client is missing). You have to install it
by yourself.
You can't make rules based on in/out interface. that may be problematic with
the ppp interface.
IDS uses snort
GUI for dhcp server is ok. You'd have to edit the config file if you want
static allocations.
dial-up looks ok - did not test it
There are other options (vpn , proxy server , ssh access , dns) - did not
look into them.
Basicaly the packet filtering (which is the core of the firewalling) is weak
compared to IPtables. I do not see a reason to use this product (if you need
all the other options, you probably need a better firewall, right?).
Once they switch to IPtables this product can be a basis for a good firewall
setup.
Dani
--
________________________________________________________________________
Dr. Daniel Arbel darbel@tx.technion.ac.il
Network Manager tel: 972-4-8294992
Technion Computer Center fax: 972-4-8222872
=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il