Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

[FW1] Why run FW-1 on Unix vs. NT? -Reply

26 views
Skip to first unread message

fw-1-mailin...@lists.us.checkpoint.com

unread,
Aug 8, 1998, 3:00:00 AM8/8/98
to fw-1-mai...@lists.us.checkpoint.com

Oh, Jeez Diana, you're going to start a holy war. But since you asked,
IMHO, this is an environment in which Unix is the vastly superior
operating system. Now before you MS loyalists get in an uproar, NT has
it's place. We all know what NT does best and why. Objectively, we
should all know why NT is not ready for prime time in a high load, Internet
server type environment (Just ask the Microsoft engineers who tried to
get the Microsoft network running on NT then switched to Solaris when
they failed miserably). In pure quantitative terms, FW-1 running on Unix
has significantly higher throughput capabilities than NT. Unix has the
added advantage of 40 years of maturity, all the tools you need bundled
with the OS, or available free on the net, and thousands of gurus
throughout the world who will provide you with solutions that don't begin
with "You have to buy <whatever> from Micro$oft . . .".

Oh, and depending on what you have in house, and in terms of local
support, consider AIX as well as Solaris.

Good luck.

Hal Dorsman
Network Administrator
Saint Patrick Hospital
Missoula, Montana, USA


>>> Diana Stuart <dst...@dresources.com> 08/07/98 11:55am >>>
Can anyone tell me in their experience with FW-1, why I should go with,
say
Sun Solaris, vs. NT? NT exists in our shop, where Unix does not.
I'm right now in the process of purchasing the platform for my Checkpoint
FW-1.
I've seen the performance reviews where Unix clearly outruns NT.
Maximum load would be about 1000 users hitting our Domino web server
on the
inside of the FW-1 where they'll be querying, searching, and
downloading
file data. Outbound traffic is http by approx. 125 users. Encryption and
address translation turned on. Does it sound like an NT box is suitable
enough?
Many thanks to anyone who responds.
Diana Stuart
Network Manager
Decision Resources, Inc.

================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================

================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================

fw-1-mailin...@lists.us.checkpoint.com

unread,
Aug 8, 1998, 3:00:00 AM8/8/98
to fw-1-mai...@lists.us.checkpoint.com

I think one point was missed from Diane's post - the do not have any
Unix in house now. So where is their expertise? If they have no Unix
expertise, how secure do you think the kernal would be?

I agree 100% that the Unix will run circles around an NT platform. If
you have the expertise in the Unix platform of choice, then all your
points are absolutely valid. If you don't have that Unix experience, it
probably will not perform as well, nor be as secure.

So, then you could hire a consultant to install and configure and
maintain the Unix system, but that will significantly raise the startup
costs!

I didn't pay any attention to the specifics mentioned. If the # of
users, translation, encryption indicates that one of the Unix platforms
is required, then in the long run it probably would be cost effective to
hire a Unix consultant/employee. Otherwise, if the NT platform will
support the requirements, since that is your technical expertise, go
with NT.

Alan...@na.manpower.com

unread,
Aug 8, 1998, 3:00:00 AM8/8/98
to fw-1-mai...@lists.us.checkpoint.com

Oh NOOOOO....Here we go again!!!!! ;-)

fw-1-mailin...@lists.us.checkpoint.com

unread,
Aug 8, 1998, 3:00:00 AM8/8/98
to Kevin Lundy

I can't help answering this post ( I know this sparks another Unix vs. NT
jihad).

I agree with Kevin, I always tell this to our customers. If you have NT
expertise and would like to install FW-1 on Unix, study the pros and cons.
How long your NT admin becomes an Unix expert? can they effectively plugged
the security holes on Unix? or hire an expert to do these stuffs.

Now, Diane if your NT can handle your requirements and you have expertise,
go with NT. And IF you really want to go out of your window pane ( or pain
:)), get a shell- get Unix.

At 03:08 PM 8/7/98 -0400, you wrote:
>
>I think one point was missed from Diane's post - the do not have any
>Unix in house now. So where is their expertise? If they have no Unix
>expertise, how secure do you think the kernal would be?


---some stuffs deleted

>>>> Diana Stuart <dst...@dresources.com> 08/07/98 11:55am >>>
>Can anyone tell me in their experience with FW-1, why I should go with,
>say
>Sun Solaris, vs. NT? NT exists in our shop, where Unix does not.
>I'm right now in the process of purchasing the platform for my
>Checkpoint
>FW-1.
>I've seen the performance reviews where Unix clearly outruns NT.
>Maximum load would be about 1000 users hitting our Domino web server
>on the
>inside of the FW-1 where they'll be querying, searching, and
>downloading
>file data. Outbound traffic is http by approx. 125 users. Encryption
>and
>address translation turned on. Does it sound like an NT box is suitable
>enough?
>Many thanks to anyone who responds.
>Diana Stuart
>Network Manager
>Decision Resources, Inc.
>
>

Roger C. Delgado Jr., CCSE,CCSA
VP for Technical Operations
NetX Solutions,Inc.
Philippines


==============================================

Talk sense to a fool and he calls you foolish.
- Euripides

fw-1-mailin...@lists.us.checkpoint.com

unread,
Aug 9, 1998, 3:00:00 AM8/9/98
to fw-1-mai...@lists.us.checkpoint.com

If anyone has some well, thought-out reasoning as to why you should pick
one OS over another, email me *privately* at dwe...@phoneboy.com. I may
put your thoughts on the FAQ I've written on the topic (and give you
credit, of course).

I've already written the "go with what you know" argument, so don't
bother sending that one to me.

--
Dameon D. Welch dwe...@phoneboy.com
a.k.a. "PhoneBoy" http://www.phoneboy.com
FireWall-1 FAQs are at http://www.phoneboy.com/fw1
The views herein may not be those of my employer. Fnord.


______________________________________________________
Get Your Private, Free Email at http://www.hotmail.com

0 new messages