Requirements for IPv6 Firewalls

• Previous message (by thread): Requirements for IPv6 Firewalls
• Next message (by thread): Requirements for IPv6 Firewalls
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Apr 17, 2014 3:07 PM, <Valdis.Kletnieks at vt.edu> wrote:
>
> On Thu, 17 Apr 2014 14:50:01 -0400, William Herrin said:
>
> > To vendors who would sell me product, I would respectfully suggest
> > that attempts to forcefully educate me as to what I *should want*
> > offers neither a short nor particularly successful path to closing a
> > sale.
>
> Which is why you reject vendors that forcefully cram IP down your throat
> and insist on X.25 support as well, right?

And speaking as the IPv6 transition lead at a large enterprise who has
already deployed IPv6 in our Internet connection points (including
firewalls) and made significant internal deployment progress, we would have
rejected out of hand any firewall vendor who tried to sell us some
proprietary, non-standard, IPv6 'NAT66' implementation. By its nature, it
would have lacked any meaningful comparative benchmarks, objective tests,
or any way to ensure a proper or secure implementation. At the IP level, we
want our perimeter products to conform to the standards.

Scott

• Previous message (by thread): Requirements for IPv6 Firewalls
• Next message (by thread): Requirements for IPv6 Firewalls
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]