its the firewall....

Started by wintermute000, December 18, 2016, 04:00:08 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions

deanwebb

#1
December 18, 2016, 02:16:05 PM
:ivan:
... because it's true, but...

:haha2:
... because it's funny. :)
Take a baseball bat and trash all the routers, shout out "IT'S A NETWORK PROBLEM NOW, SUCKERS!" and then peel out of the parking lot in your Ferrari.
"The world could perish if people only worked on things that were easy to handle." -- Vladimir Savchenko
Вопросы есть? Вопросов нет! | BCEB: Belkin Certified Expert Baffler | "Plan B is Plan A with an element of panic." -- John Clarke
Accounting is architecture, remember that!
Air gaps are high-latency Internet connections.

LynK

#2
December 19, 2016, 09:36:51 AM
pls dont do this to me. Q1 next year im installing new firewalls  :wall: :wall: :wall:
Sys Admin: "You have a stuck route"
            Me: "You have an incorrect Default Gateway"

deanwebb

#3
December 19, 2016, 09:54:10 AM
Quote from: LynK on December 19, 2016, 09:36:51 AM
pls dont do this to me. Q1 next year im installing new firewalls  :wall: :wall: :wall:

You will need this, then:

:notthefirewall:

Print it out and post it up in your cubicle. Point to it whenever someone walks up.
Take a baseball bat and trash all the routers, shout out "IT'S A NETWORK PROBLEM NOW, SUCKERS!" and then peel out of the parking lot in your Ferrari.
"The world could perish if people only worked on things that were easy to handle." -- Vladimir Savchenko
Вопросы есть? Вопросов нет! | BCEB: Belkin Certified Expert Baffler | "Plan B is Plan A with an element of panic." -- John Clarke
Accounting is architecture, remember that!
Air gaps are high-latency Internet connections.

EOS

#4
December 19, 2016, 10:21:29 AM
Quote from: LynK on December 19, 2016, 09:36:51 AM
pls dont do this to me. Q1 next year im installing new firewalls  :wall: :wall: :wall:

What equipment are you going with?

icecream-guy

#5
December 19, 2016, 10:35:58 AM
Quote from: EOS on December 19, 2016, 10:21:29 AM
Quote from: LynK on December 19, 2016, 09:36:51 AM
pls dont do this to me. Q1 next year im installing new firewalls  :wall: :wall: :wall:

What equipment are you going with?

Probably Belkin.  :lol:
:professorcat:

My Moral Fibers have been cut.

LynK

#6
December 19, 2016, 10:42:03 AM
EOS, we are looking at  PAN, Cisco, fortinet, and checkpoint. Personally I have ruled out checkpoint. So it is coming down to PAN, cisco, and fortinet.

From what ive found, and gathered he is a small snippet:

PAN: Leading edge, but pricey (subscription based. 4 subscriptions options each are 20%.... wow). Ive also heard they have SSL decrypt performance issues, which I am going to chat with them about.

Fortinet: Fast (ridiculous), for the cost (very cheap). Ive heard their support is spotty, especially with their VPN clients(especially macOS). Other people say they love them... but I am not sold. Gonna be chatting with their rep soon. They also had a backdoor for 2 years and didn't tell anyone... so there is that going for them.

Cisco: Cool new stuff with sourcefire. They are working torwards a unified coding platform for ASA/firepower devices called (FX-OS). It is available but limited functionality (no anyconnect :(  ). Cisco does everything okay, but their biggest complaints are their licensing structure, cost for the bandwidth, and the fact that they are a late adopter of NGIPS/NGFW

I will keep you updated.   

Sys Admin: "You have a stuck route"
            Me: "You have an incorrect Default Gateway"

deanwebb

#7
December 19, 2016, 10:45:24 AM
Isn't yours the boss that doesn't want to spend any money? If so, watch out for the suggestion to put in a multihomed Linux box running iptables...
Take a baseball bat and trash all the routers, shout out "IT'S A NETWORK PROBLEM NOW, SUCKERS!" and then peel out of the parking lot in your Ferrari.
"The world could perish if people only worked on things that were easy to handle." -- Vladimir Savchenko
Вопросы есть? Вопросов нет! | BCEB: Belkin Certified Expert Baffler | "Plan B is Plan A with an element of panic." -- John Clarke
Accounting is architecture, remember that!
Air gaps are high-latency Internet connections.

LynK

#8
December 19, 2016, 10:50:09 AM Last Edit: December 19, 2016, 10:52:46 AM by LynK
@dean

yes this is the same guy. He is somewhat starting to come around... :wall: :wall: :wall:  I had a very lengthy conversation about security and how running on unsupported FW platforms is not recommended.....speaking of linux. This is pretty cool. Any of you guys hear about: VyOS

Pretty cool and affordable.
Sys Admin: "You have a stuck route"
            Me: "You have an incorrect Default Gateway"

deanwebb

#9
December 19, 2016, 01:01:42 PM
Quote from: LynK on December 19, 2016, 10:50:09 AM
@dean

yes this is the same guy. He is somewhat starting to come around... :wall: :wall: :wall:  I had a very lengthy conversation about security and how running on unsupported FW platforms is not recommended.....speaking of linux. This is pretty cool. Any of you guys hear about: VyOS

Pretty cool and affordable.

What are your use cases for the firewall? What sort of business is this firm in? What firewall is currently in place?
Take a baseball bat and trash all the routers, shout out "IT'S A NETWORK PROBLEM NOW, SUCKERS!" and then peel out of the parking lot in your Ferrari.
"The world could perish if people only worked on things that were easy to handle." -- Vladimir Savchenko
Вопросы есть? Вопросов нет! | BCEB: Belkin Certified Expert Baffler | "Plan B is Plan A with an element of panic." -- John Clarke
Accounting is architecture, remember that!
Air gaps are high-latency Internet connections.

LynK

#10
December 19, 2016, 02:46:13 PM
PAN has so far been the best vendor.
Sys Admin: "You have a stuck route"
            Me: "You have an incorrect Default Gateway"

deanwebb

#11
December 19, 2016, 03:58:52 PM
Quote from: LynK on December 19, 2016, 02:46:13 PM
PAN has so far been the best vendor.

Yep. And if you got budget for it, it's the way to go. The devil's in the accounting details, though. How good are your purchasing guys?
Take a baseball bat and trash all the routers, shout out "IT'S A NETWORK PROBLEM NOW, SUCKERS!" and then peel out of the parking lot in your Ferrari.
"The world could perish if people only worked on things that were easy to handle." -- Vladimir Savchenko
Вопросы есть? Вопросов нет! | BCEB: Belkin Certified Expert Baffler | "Plan B is Plan A with an element of panic." -- John Clarke
Accounting is architecture, remember that!
Air gaps are high-latency Internet connections.

LynK

#12
December 20, 2016, 09:48:45 AM
Fortinet is looking pretty good too. Checkpoint is out, and cisco may be out soon too.
Sys Admin: "You have a stuck route"
            Me: "You have an incorrect Default Gateway"
Print
Go Up Pages1
User actions