Re: 56k dial up on laptop 802.11G ?

Duane Arnold <Notme@xxxxxxxxx> wrote:
>I dropped the question about the 54g in comp.security.firewalls and got my
>answer from a Top Gun in that NG who installs and supports Linksys routers
>and Watchguard FW appliances. It is as I knew it was. You can take all of
>this and stick you know where -- Floyd Firewall. <g>

Why are you trying to distort what he said to mean something he
*didn't* say? He did not mention *any* specific device.

He said that if it can't sort out non-HTTP traffic to port 80 it
isn't sufficient for him. *Neither* the Watchguard Firefox 6tc
FW appliance or the WRT54G do what he wants.

Of course, what he wants does *not* define what a firewall is,
except to him, but that's okay too. Regardless of that, your
"Top Gun" is clearly not... *nobody* else defines what is or is
not a firewall or even a "FW appliance" that way.

The idea that one is more or less of a "FW Appliance" is
*clearly* ridiculous, and here again are the specifications to
prove it. Plus, since originally posting I have found a "User
Guide" from Watchguard the confirms most of the deficiencies
noted previously. It doesn't give exact specifications, so I'm
not positive about all of the ones I expected to have been
upgraded, but it appears that *none* of them have changed since
it was originally introduced. It still looks like just a very
overpriced piece of equipment.

Linksys Wireless Router/Firewall Watchguard "FW Appliance"
WRT54G Firefox SOHO 6tc Wireless

Price: $50 $510

WAN interface: 1 1
LAN interface: 4 4
Speed: 10/100 10/100
Switched: yes yes
Wireless: 802.11b/g 802.11b

Max DHCP clients: 253 10
DHCP disable?: yes yes
notes:
can disable, set can disable,
address, set number, set address
and set lease time

UPnP: yes no
remote access: HTTP/HTTPS no
static routing: yes yes
dynamic routing: yes no

WAN-LAN throughput: 19.7 Mbps 3.1 Mbps
UDP stream rate: 498 Kbps 499 Kbps

LAN-WAN throughput: 21.7 Mbps 7.4 Mbps

Firewall: NAT+SPI NAT+SPI
DMZ: yes yes
multi NAT: no no
Port filtering: yes yes
notes:
10 time schedules for Deny/allow predefined
6 IPs, 2 IP ranges, and services for all LAN clients.
8 MAC addresses, plus 5 Can define custom services
non-scheduled port ranges with port/protocol and from/to
that apply to all LAN ports IP addresses.

Single port
forwarding: yes yes

Port range
forwarding: yes yes

Triggered port
mapping: yes no
notes:
10 port ranges with
tcp, udp, or both
protocol selection

Loopback: yes ??

Content controls: yes can block HTTP access to a
Block services: yes list of IP addresses
Block ports: range
Block URLS: 4
Block keyword: 6
Block protocols: icmp, udp, tcp
tcp&udp, L7
Block services: Aim, Applejuice,
Bearshare, Biff,
BitTorrent, Citrix,
Counterstrike, Cvs,
eDonkey, DHCP,
DirectConnect

Qos: yes ??
Port: WAN or LAN can
limit bandwidth
uplink and downlink
separately.
services: priority for same
list as blocked
services.
netmask: yes
MAC address: yes
LAN ports: priority and max rate

Syslog: yes yes
SNMP: yes no
Telnet: yes ??
SSH: yes ??
AP watchdog: yes ??

DNS masq: yes ??
WEP 128 bit: yes yes
WPA: yes no
802.1x auth: yes no

Anti Virus: no yes

Real Time Clock: yes yes
NTP auto set: yes ??

Disable NAT: yes ??
Set MTU: yes ??
Dyanmic DNS: yes yes

VLAN/bridge config: yes ??
notes:
up to 15 VLANs assigned
to any of the 5 ethernet
ports.

VPN Client:
PPTP pass-thru: 5 each no limit
IPsec pass-thru: 1 each no limit

VPN Server:
PPTP pass-thru: 1 1
IPsec pass-thru: 1 1

VPN other:
Endpoint: no yes
Co-processor: no yes

Authentication:
PPPoE yes yes
Set host name yes no
Set domain name yes no
Set MAC address yes yes



--
Floyd L. Davidson <http://www.apaflo.com/floyd_davidson>
Ukpeagvik (Barrow, Alaska) floyd@xxxxxxxxxx
.

Relevant Pages

  • Re: 56k dial up on laptop 802.11G ?
    ... >I call it a packet filtering FW router but you can twisted it anyway you ... I would welcome your corrections to the Watchguard specs, ... packet filtering at the IP level, port triggered mapping and ... VPN Client: ...
    (alt.internet.wireless)
  • Re: ISA Remote Access Stops Working
    ... Since you are using a "pre-configured" appliance... ... Change the TS port on your ISA appliance to something else, say, port ... Remote Desktop Disconnected ... Remote connections might not be enabled or the computer might be too ...
    (microsoft.public.isa)
  • Re: 56k dial up on laptop 802.11G ?
    ... Watchguard both consider IP addresses heard to be ... termination in the router used strictly for remote management. ... The lack of port triggering in the Watchguard is a real irritation. ... WRT54G with Alchemy firmware can terminate a PPTP tunnel. ...
    (alt.internet.wireless)
  • Re: Hardware vs software firewall
    ... With the watchguard, in my office and home, I have 4 HTTP rules, each ... In some installations I have 11 or 12 HTTP rules, ... > whether connections are established or not, and port triggering open/close ... When it comes to firewalls, I'll stick with WatchGuard as my first ...
    (comp.security.firewalls)
  • Re: Routing a subdomain....how?
    ... We recently have an appliance that sits on our network but needs access to ... All incoming port 80 traffic is pointed there. ... Is the SBS server hooked up to the same router as the web server? ... From what you have posted it sounds like there is a NAT router with a web server and a SBS server attached on the LAN side of the router. ...
    (microsoft.public.windows.server.sbs)