: -----Original Message----- : From: Cleaver, Richard J [mailto:Richard.Cleaverat_private] : Sent: Thursday, September 30, 1999 6:25 AM : To: firewall-wizardsat_private : Subject: BigIP controller - any issues? : : : I have been asked to investigate the effect of implementing the BigIP : Controller from F5 networks. It has been proposed to place : this device (of : which I have no experience) on the dirty side of internet : facing firewalls : to achieve firewall load balancing. Does anyone know of any : security issues : with this device? : : Thanks : : Richard : Hi Richard, The OS in BigIP is a BSD kernel (stripped down?) with packet filtering. In addition, the commercial version of SSH is included for secure remote access. One feature you may want to disable is a Web based administration interface that is installed by default. Mind you, it is only accessible via SSL. No inetd, no portmapper, sendmail by option, and good logging features. Victor
This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 13:42:08 PDT