Re: [PLUG] Fios Quantum Gateway Router / Cabling type

Rich Freeman on 7 Jul 2017 04:19:57 -0700

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] Fios Quantum Gateway Router / Cabling type

From: Rich Freeman <r-plug@thefreemanclan.net>
To: "Philadelphia Linux User's Group Discussion List" <plug@lists.phillylinux.org>
Subject: Re: [PLUG] Fios Quantum Gateway Router / Cabling type
Date: Fri, 7 Jul 2017 07:19:50 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to; bh=go5Z8Gc38uV5dA3/VEogJzKHN91bCIZECNP9fm7fo6M=; b=g0+BIeiBpKlwDCZwBoqoY1SQsuYsFOvhCn8kQAf5i7CzcRZG/aOH0cGhf6mBCqb8o8 XKP+42mgj40+/XNAeohQb/ulfyx5iYSAdPB298sP9JnR6PDIC0Aw7+saWhDdF/3tC2Tb km/YCkwpGW6gtRi4UfbXo8HkVj9HS3r7E1iyrFcnkHVVDN0yAi5GhtgLh8xyMokiMdFd xbdlJU0QwZhMjAQe+IuJndH3LQkBqaYatwB31pi/jt3MTNCr4N5hYV07G3wYHuBjohpX lz4ORsxuLACeAbb77gRRA8s0nsBALsvUfGsFG9e8XINl9+I2XGB4m0f3Vvu9y2QhkWjd P9yg==
Reply-to: Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>
Sender: "plug" <plug-bounces@lists.phillylinux.org>

On Thu, Jul 6, 2017 at 10:37 PM, Lee H. Marzke <lee@marzke.net> wrote:
>
> I believe VMware has government certification that verify that.   The old days of requiring an air-gap between
> different security levels is long gone - and VMware NSX provides much more security than air gap.

I wouldn't call a firewall an "air gap."  When you have an air gap
between different security levels there is simply no way for them to
communicate at all.

In any case, how can anything provide "much more security" than either
a firewall or an air gap, especially at that level of abstraction?

I'm not arguing that NSX isn't secure.  The statement above just
seemed to go a bit far with the claim.

I could see the argument that an implementation of a
firewall/network/etc that provides a more clearly defined
infrastructure would be more secure than an implementation that does
not, because it reduces the risk of a configuration error.  Tools for
orchestration and software-defined infrastructure can help provide
security to ensure that every host only talks to exactly the hosts it
needs to, for example.

--
Rich
___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug

Follow-Ups:
- Re: [PLUG] Fios Quantum Gateway Router / Cabling type
  - From: "Lee H. Marzke" <lee@marzke.net>

References:
- [PLUG] Fios Quantum Gateway Router / Cabling type
  - From: "K.S. Bhaskar" <bhaskar@bhaskars.com>
- Re: [PLUG] Fios Quantum Gateway Router / Cabling type
  - From: PaulNM <plug@paulscrap.com>
- Re: [PLUG] Fios Quantum Gateway Router / Cabling type
  - From: "Lee H. Marzke" <lee@marzke.net>
- Re: [PLUG] Fios Quantum Gateway Router / Cabling type
  - From: "Lee H. Marzke" <lee@marzke.net>
- Re: [PLUG] Fios Quantum Gateway Router / Cabling type
  - From: JP Vossen <jp@jpsdomain.org>
- Re: [PLUG] Fios Quantum Gateway Router / Cabling type
  - From: "Lee H. Marzke" <lee@marzke.net>

Prev by Date: Re: [PLUG] Fios Quantum Gateway Router / Cabling type
Next by Date: Re: [PLUG] Fios Quantum Gateway Router / Cabling type
Previous by thread: Re: [PLUG] Fios Quantum Gateway Router / Cabling type
Next by thread: Re: [PLUG] Fios Quantum Gateway Router / Cabling type
Index(es):
- Date
- Thread