SecurityFocus

2 firewalls protecting internal network May 24 2012 04:45AM
marco cohen (marcocohen2 gmail com) (7 replies)

Re: 2 firewalls protecting internal network May 25 2012 02:48PM
olufemimogaji gmail com

RE: 2 firewalls protecting internal network May 24 2012 06:37PM
Dan Lynch (DLynch placer ca gov) (1 replies)

Re: 2 firewalls protecting internal network May 24 2012 06:48PM
Mrs. Y. (networksecurityprincess gmail com)

RE: 2 firewalls protecting internal network May 24 2012 04:50PM
David Gillett (gillettdavid fhda edu)

RE: 2 firewalls protecting internal network May 24 2012 04:25PM
Mike Vella (mike bakerross co uk) (1 replies)

Re: 2 firewalls protecting internal network May 24 2012 04:56PM
Ferreira, Steve G. (sferreira mitre org)

Re: 2 firewalls protecting internal network May 24 2012 04:03PM
RobOEM (rd seclists gmail com)

It's not defense in depth. You're implementing the same type of control twice.
What you're doing by choosing two vendors is mitigating the risk of
failure in the control itself (ie a vuln affecting, say, all Cisco
firewalls).
The risk you're adding, however, is discrepancy in those controls;
another thread in sec-basics http://seclists.org/basics/2012/May/10
stresses the difficulty of managing firewalls.

You should know what you're doing if you plan to implement that (ie
not defense in depth), and my advice would be not to "stack" them but
to put them in a redundant active-passive architecture, with a
monitoring in place. And consider looking into management solutions
first, then buying from vendors compatible with the management tool
you plan to buy.

--rob'

On Thu, May 24, 2012 at 6:45 AM, marco cohen <marcocohen2 (at) gmail (dot) com [email concealed]> wrote:
>
> hi all
>
> I know that there is a defence in depth idea to implement 2 firewalls,
> each from different vendor.
>
> what you think about it ? is it practical?
>
> thanks
>
> marco
>
> ------------------------------------------------------------------------

> Securing Apache Web Server with thawte Digital Certificate
> In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.
>
> http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442
f727d1
> ------------------------------------------------------------------------

>

------------------------------------------------------------------------

Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442
f727d1
------------------------------------------------------------------------

[ reply ]

Re: 2 firewalls protecting internal network May 24 2012 03:42PM
synja synfulvisions com

Re: 2 firewalls protecting internal network May 24 2012 03:36PM
Stephanus J Alex Taidri (securityfocus ae taidri com)