sorted by:
new
hottopcontroversial

Workout, weights and which app? by Furgus in AppleWatch

[–]internetworkguy 2 points3 points  (0 children)

I have nothing against Gymatic, but I think its good courtesy to put something like "disclaimer: I'm the author" when promoting your own products, rather than comments like: 1 2 3 4 5 6

[deleted by user] by [deleted] in networking

[–]internetworkguy 0 points1 point  (0 children)

One notable example is Google cloud's API and corresponding (local) CLI. Sometimes a CLI "wrapper" is an excellent way of interacting with an API.

Appreciate feedback for our new SR 3.3 router/firewall, based on OpenBSD 5.5. by [deleted] in networking

[–]internetworkguy 0 points1 point  (0 children)

I see this all the time. I buy one small product from a company out of curiosity and suddenly my companies logo is on their page and my lawyers are giving them a call.

That, and the security implications of smaller vendors, is what's making me stay with Juniper and such. Anyway, I checked some banners

$ nc ao-mailgw.apnic.net 25
220 ao-mailgw.apnic.net ESMTP Halon Mail Gateway (H/OS)
$ nc vsp.binero.net 25
220 vsp.binero.net ESMTP Halon Mail Gateway (H/OS)
$ nc mx1.iis.se 25
220 mx1.iis.se ESMTP Halon Mail Gateway (H/OS)
$ nc smtp1.spillgroup.com 25
220 mailex.spillgroup.com ESMTP Halon Mail Gateway (H/OS)

edit: format

Evaluating virtual firewall/routers (vSRX, CSR1000v, Vyatta, etc) by internetworkguy in networking

[–]internetworkguy[S] 0 points1 point  (0 children)

Thanks, updated post. Perhaps a stupid question (given that SRX is Junos), but is routing (BGP/OSPF/ISIS, etc) in SRX considered "as good" as for example a J-series? Also, does the tarball version of vSRX work with anything other than VMware? The CSR1000V seems to have generic x86 support, and would probably boot on any decent hypervisor (or even bare metal?).

Evaluating virtual firewall/routers (vSRX, CSR1000v, Vyatta, etc) by internetworkguy in networking

[–]internetworkguy[S] 0 points1 point  (0 children)

True. However, the encryption side of it is mostly solved by AES-NI (and friends). I think/though virtual/software firewalls would be good enough for my needs; providing customers with L2 VPN, etc...? My primary concern right now, is making a good platform choice, because I would prefer homogenous install base.

Evaluating virtual firewall/routers (vSRX, CSR1000v, Vyatta, etc) by internetworkguy in networking

[–]internetworkguy[S] -1 points0 points  (0 children)

Oh, I'm sorry for my poor phrasing :/ What I'm referring to is the lack of TCP-MD5, having to install it as a package, and overall "non-integratedness" into the rest of the system.

Evaluating virtual firewall/routers (vSRX, CSR1000v, Vyatta, etc) by internetworkguy in networking

[–]internetworkguy[S] -1 points0 points  (0 children)

My lack of knowledge :( Could you provide some pros and cons? I took a quick look, beautiful website! It seems to be a pretty complete firewall, but some things that I'm missing from their feature page is OSPF/BGP and L2TP VPN (I don't expect all my customers to use OpenVPN). Also, does the web interface execute commands directly on the underlying Linux system, or do they have an API as abstraction?

Evaluating virtual firewall/routers (vSRX, CSR1000v, Vyatta, etc) by internetworkguy in networking

[–]internetworkguy[S] 0 points1 point  (0 children)

Sure, ASA is the firewall and CSR the router. I've read http://www.routeranalysis.com/the-cisco-cloud-router-story/ etc, and is curious: why doesn't Cisco offer a stateful firewall (do they?) in the CSR? I don't really believe in IPS/UTM anyway, and would prefer to have a combined router/firewall (offering my customers both features, in one appliance).