Talk:Security Handbook/Firewalls and Network Security

From Gentoo Wiki
Jump to:navigation Jump to:search
Note
This is a Talk page - please see the documentation about using talk pages. Add newer comments below older ones, sign comments using four tildes (~~~~), and indent successive comments with colons (:). Add new sections at the bottom of the page, under a heading (== ==). Please remember to mark sections as "open for discussion" using {{talk|open}}, so they will show up in the list of open discussions.

A single firewall or firewall type is generally insufficient to secure an entire network

Talk status
This discussion is still ongoing.

I am not happy with this statement ... because it is wrong. In nearly every small company, with a small network this solution is active:

https://en.wikipedia.org/wiki/DMZ_(computing)#Single_firewall

I have even created an example configuration for this design:

https://forums.gentoo.org/viewtopic-t-1114432.html

Yes, it is a SPOF but with a correct configuration it is a very secure solution. Think how many samll companies have the money for an edge and a core firewall ?

pietinger 07:40, 31 August 2023 (UTC)

Sentence removed, and I improved some of the other phrasing around it.
JM01085758 (talk) 00:27, 6 September 2023 (UTC)