Adam Carter <adamcarter3 <at> gmail.com> writes:
> Anyone advocating stateless firewalls in 2013 deserves scrutiny. I would > be asking for some evidence there is a performance issue, and that the > best solution to the problem is to turn off stateful inspection. There are lots of tools and approaches to security. Here is something you might want to investigate further: Stateless Firewall Filters: great for fending off DDOS and such....... Instead of the maginot wall (firewall router) several different security devices can be layered in a serial path to perfrom various and diffent security functions. Here is a starting point by a fairly reputable routing vendor: http://www.juniper.net/techpubs/en_US/junos12.2/topics/concept/firewall-filter-overview.html http://www.juniper.net/techpubs/software/junos-security/junos-security10.3/junos-security-swconfig-interfaces-and-routing/topic-47671.html http://www.juniper.net/techpubs/en_US/junos/topics/concept/firewall-filter-types.html James
