General discussion

Locked

help me decide

By raymata00 ·
taking the following into consideration
(1)
whaterver os i seclect security is only as tight as the admin's knowledge.
(2)
problems with known and not yet known
ipsec,authenticaion,bugs,compatibility...etc
(3)
documentation on how to's and how come's
(4) money !!

i have decided to skip paying cisco for a pix 515 vpn solution.
and go for a unix flavor vpn solution.
i can't decide which flavor, I am starting
to lean towards openbsd over freebsd.
can you help me decide?
or shouldi play on the safe side and go with
cisco?

what is the tightest os out of the box?

This conversation is currently closed to new comments.

8 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

help me decide

by dlafrombois In reply to help me decide

I do not belive there is any "TIGHT" os' out there that are free. You get what you pay for applies. The firewall companies have taken os' and tightened them down and then follow through with security patches. Even if the free solutions were viable for a firewall, they are only as strong as the updates that are delivered and installed in a timely manner.

I would stick with a PIX or other industrial firewall product. We use sidewinder 5.0 and love the product.

Good Luck

Collapse -

help me decide

by dlafrombois In reply to help me decide

You did not comment on your experience with free be UNIX software. In most cases the free software enables you to implement a firewall, but you have to do all the work. If you have a life, like most IT people try to, then you want something simpleand easy to manage and upgrade. Boxed software tends to free us from the burden of recreating a wheel. I personally would pay the extra money for a commercial product with upgrade and patch paths and most importantly a single point of technical support. With the free software you have limited support if any.

I also follow the phrase: "You get what you pay for..." There is nothing free in life.

Good Luck and see you on the golf course or NOT!!!

Collapse -

help me decide

by Shanghai Sam In reply to help me decide

i do want to spend time with my family.
the people who designed the pix probably
spent a great deal of time and money, and i would imagine know a great deal more about security than me.so why not take advantage and make my life easy.
im going with the pix!

Collapse -

help me decide

by Computechie In reply to help me decide

Personally, I'd go with FreeBSD. I've used it on machines for almost 3 years now, and have had several break in attempts, and no one has gotten in so far. With enough work, you can make the box extremely tight, and wont loose any sleep worrying if people are breaking in or not. OpenBSD is another good choice, and NetBSD is also renowned for it's out-of-the-box security features. Any of the *BSD's would make a great choice for security, and are probably the simplest to use. Hope this helped you out.

Collapse -

help me decide

by Shanghai Sam In reply to help me decide

i agree that *bsd's make a good anything
but i don't have the time to spend with
these systems,my motto is if it does not
kill you it makes you stronger, but i am getting older and weaker for battle.
i have to pick and choose what i learn,it seems to me picking and learning anything cisco makes $. so i must follow the money . when it gets to the point *bsd must be learned in order to stay on top, then i will follow *bsd.
thanks for your reply.

Collapse -

help me decide

by eBob In reply to help me decide

I like the comment "you get what you pay for".

If you work for free, then the "free" solutions like FreeBSD can be as secure as the "commercial" system$. However, to acheive that level of security, you will need to put in some work tightening down the O/S, implementing the policies into your chosen solution, locking it al down again, etc.

The Cisco Pix, Checkpoints, and so on have a lot of this work all done for you. All that's really left for you is to implement your organisation's security policy.

Collapse -

help me decide

by Shanghai Sam In reply to help me decide

Poster rated this answer

Collapse -

help me decide

by raymata00 In reply to help me decide

This question was closed by the author

Back to Security Forum
8 total posts (Page 1 of 1)  

Related Discussions

Related Forums