|
|
|
|
|
|
|
|
 |
 |
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] RE: [FW1] Managing a lot of firewalls
Greg, While in theory a single management station can manage 50 modules, the practical limit is 10-12. Your best option is certainly the Provider-1, which will consolidate/centralize your enterprise wide control/management infrastructure. While Provider-1 can certainly accommodate your needs, you might want to rethink your strategy of having one rulebase. On one hand you have a practical limit on the number of rules (used to be 253), but also you will probably find that managing rules for 30 firewalls is rather different from managing only 4. You might find the "ease of use" of the single rulebase approach nightmarish. In Provider-1 you can certainly port the existing rules/objects through the various sub-management pieces (i.e. CMAs), and you can do house cleaning later depending on the site requirements. On the other hand, you might also do the digits for that so you don't end up with a cost-prohibitive solution. Please let me know if you need further info. Thank you. George > -----Original Message----- > From: Sumit Chopra [SMTP:[email protected]] > Sent: Sunday, April 22, 2001 9:05 PM > To: 'Greg Winkler'; [email protected] > Subject: RE: [FW1] Managing a lot of firewalls > > > A single management module can manage upto a max of 50 firewalls, so you > should be fine. > > -Sumit > > > -----Original Message----- > From: [email protected] > [mailto:[email protected]]On Behalf Of > Greg Winkler > Sent: Friday, April 20, 2001 12:27 PM > To: [email protected] > Subject: [FW1] Managing a lot of firewalls > > > > A suggestion has been made that we move to an Internet access model that > involves firewalls and ISP connection points at many of our locations, > mostly in Europe. Can't give you an exact number but I would guess we are > talking about 30 or so firewalls. > > How would one manage so many? Right now we've got only 4 and management is > fairly simple using and Enterprise license. Can a single management > station > manage 30 plus firewalls. I would expect probably not. What are the > options? I've heard of Provider-1, would that allow me to "manage" > multiple > management stations such that I would still only have one set of network > objects and rulebase to maintain? Does it work well? > > > -------------------------------------------------------------------------- > -- > ------------ > > Greg Winkler > Systems Manager, IT&S > Huntsman Corporation > Internet Mail: [email protected] > Voice:> Fax:> > > > > ========================================================================== > == > ==== > To unsubscribe from this mailing list, please see the instructions at > http://www.checkpoint.com/services/mailing.html > ========================================================================== > == > ==== > > > > ========================================================================== > ====== > To unsubscribe from this mailing list, please see the instructions at > http://www.checkpoint.com/services/mailing.html > ========================================================================== > ====== > > _____________________________________________________________________ IMPORTANT NOTICES: This message is intended only for the addressee. Please notify the sender by e-mail if you are not the intended recipient. If you are not the intended recipient, you may not copy, disclose, or distribute this message or its contents to any other person and any such actions may be unlawful. Banc of America Securities LLC("BAS") does not accept time sensitive, action-oriented messages or transaction orders, including orders to purchase or sell securities, via e-mail. BAS reserves the right to monitor and review the content of all messages sent to or from this e-mail address. Messages sent to or from this e-mail address may be stored on the BAS e-mail system. ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|
||||||||||
 |
 |
 |
 |
 |
 |
 |
 |
 |
|
