RE: Nortel ISA Hardware Firewall
- From: "Thomas W Shinder" <tshinder@xxxxxxxxxxx>
- To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
- Date: Mon, 31 Oct 2005 13:32:59 -0600
Pretty good quote, eh?
Kind of makes you *wonder* about the guys who don't use ISA firewalls. (not
that there's any wrong with being that way).
Tom
Thomas W Shinder, M.D.
Site: www.isaserver.org <http://www.isaserver.org/>
Blog: http://spaces.msn.com/members/drisa/
Book: http://tinyurl.com/3xqb7 <http://tinyurl.com/3xqb7>
MVP -- ISA Firewalls
**Who is John Galt?**
________________________________
From: Alexandre Gauthier [mailto:gauthiera@xxxxxxxxxxxxxxxxx]
Sent: Monday, October 31, 2005 1:25 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: Nortel ISA Hardware Firewall
http://www.ISAserver.org
Well, to quote Dr.Shinder himself on the matter....
"You'll find that ISA admins don't read playboy for the articles."
________________________________
De : Troy Radtke [mailto:TRadtke@xxxxxxxxxxxx]
Envoyé : 31 octobre 2005 13:44
À : [ISAserver.org Discussion List]
Objet : [isalist] RE: Nortel ISA Hardware Firewall
http://www.ISAserver.org
Command line is a dying breed? Didn't everyone download Monad last
week from Microsoft???
http://en.wikipedia.org/wiki/MSH_(shell)
Guess I'll just toss this Windows Command Line book out the door that
I've used as a pillow in a few server rooms to catch some sleep with...... I
guess no more logging of an entire computer's NTFS settings with a few clicks
of the keyboard and XCACLS.....
________________________________
From: Ball, Dan [mailto:DBall@xxxxxxxxxxx]
Sent: Monday, October 31, 2005 10:03 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: Nortel ISA Hardware Firewall
http://www.ISAserver.org
Well, count yourself in the vast minority now... The newer IT techs
doesn't seem to know squat about the command-line, we're a dying breed *sigh*.
Microsoft has gotten it almost perfected though. It can't get too much
easier than "New updates are available, do you want to install them now?", and
"Updates are being installed, you can continue working while this is done", or
even opt for automatic installation. It takes zero skill to install a
patch/update with this methodology (and some install too quick because of it).
Cisco hasn't moved to this level yet, although I think they will
gradually get pushed in that direction. The vast majority of Cisco admins are
extremely comfortable with doing all work from the command prompt for now, so
there isn't a big hurry. Hence the quote from their corporate people that
their users don't want it...
It's been a couple of years since I've upgraded a Cisco myself, but I
don't recall it being as easy as copying over a .bin file and rebooting. Might
it be because I was doing a whole version upgrade instead of a patch?
________________________________
From: Alexandre Gauthier [mailto:gauthiera@xxxxxxxxxxxxxxxxx]
Sent: Monday, October 31, 2005 9:19 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: Nortel ISA Hardware Firewall
http://www.ISAserver.org
It always amazes me on how anything related to command line or anything
that is text only will make many Windows admins automatically say it's hard or
unpleasant.
I for one, think text mode = light, which = simplicity.
It's not that counter intuitive, but simple - and thus less error
prone, more straightforward. I don't need tha bling bling.
But then again that is my opinion. Having manual also ensures you have
competent administrators :-)
Blind patching is my personal equivalent of Dr.Shinder's "hardware
firewall" or the "open port button".
But you know discussing this point on a ISA mailing list is pointless,
since I assume most of those who moan about Cisco to be doing ISA for a living
- it's what they know best. On a Cisco mailing list, that would be different,
since they know Cisco best, and probably only vaguely heard of ISA and ditch it
in the same way.
It all comes to an e-peepee size fight that comes stunningly close to
downright fanboyism.
And somehow making posts just to ditch the lastest PIX or anything
cisco does that is wrong strikes me as vaguely childish and reeks of
self-justification, somehow... I don't know. I try to stand neutral in my
recommendations.
________________________________
De : Tiago de Aviz [mailto:Tiago@xxxxxxxxxxxxxxx]
Envoyé : 31 octobre 2005 08:01
À : [ISAserver.org Discussion List]
Objet : [isalist] RE: Nortel ISA Hardware Firewall
http://www.ISAserver.org
I think that it could be easier, less-manual. I've dont it several
times myself, but I don't find it amusing to do. Cisco could do some better
research to make things better to upgrade and maintain.
Tiago de Aviz
SoftSell - Curitiba
(41) 3340-2363
www.softsell.com.br
Esta mensagem, incluindo seus anexos, tem caráter confidencial e seu
conteúdo é restrito ao destinatário da mensagem. Caso você tenha recebido esta
mensagem por engano, queira por favor retorná-la ao destinatário e apagá-la de
seus arquivos. Qualquer uso não autorizado, replicação ou disseminação desta
mensagem ou parte dela é expressamente proibido. A SoftSell não é responsável
pelo conteúdo ou a veracidade desta informação.
>>> thor@xxxxxxxxxxxxxxx 30/10/2005 17:00 >>>
http://www.ISAserver.org <http://www.ISAserver.org>
Hi Dr. Shanker-
I have several about the country at my different facilities- mainly for
t1's
and integrated voice/data circuits. Damn good routers, if you asked
me.
I've got some that are still in operation after 8 years of constant
use, and
have never had a single problem with any of them-not even a fan going
out.
But yes, it is that sort of performance that make people forget they
even
have them, and thus, do not think they need attention. I totally agree
with
you on that point. If Pescatoodles had any real insight (as you do)
then he
would have made that point rather than blithe on about how "really
really
really hard" it is to update the IOS. But hey, it may actually be
really,
really, really hard for him. Copying over a .bin file, or just
replacing
one in the tftp boot server and cycling the router is something my 4
year
can do, but I guess not everyone has his skilz ;)
t
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Visit TechGenix.com for more information about our other sites:
http://www.techgenix.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
tradtke@xxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Visit TechGenix.com for more information about our other sites:
http://www.techgenix.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
gauthiera@xxxxxxxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Visit TechGenix.com for more information about our other sites:
http://www.techgenix.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
tshinder@xxxxxxxxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx
Other related posts:
