[ previous ] [ next ] [ threads ]
 From:  Peter Boosten <peter at boosten dot org>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] IPAM
 Date:  Thu, 09 Aug 2007 18:36:27 +0200
Hash: SHA1

Lee Sharp wrote:
> Peter Boosten wrote:
>> Hi all,
>> I must have missed the big picture, but what does IP Administration have
>> in common with a firewall?
> Most people with firewalls use IP addresses.  Many of those are managed
> by the firewall. Some management solutions integrate with some
> firewalls.  And there is a common interest for many users.  I am sure a
> better solution will soon shake out, and after a few "This works" posts
> it will drop off.

Yes, I can see the convience that would give. It's my believes however
that a firewall should only do what it's for: keep the bad traffic out.
I can even live with a DHCP server on board, since m0n0 (which I love
btw) is used in a SOHO environment as well. But those aren't exactly the
places where one would suspect an IP Administration tool.

IPAM is for large(r) environments, and the more functionality you push
into a firewall, the more vulnerable your organisation gets whenever it
has been compromised.

> However the best reason is that this list is one of the best collection
> of knowledgeable technical professionals anywhere.  An occasional off
> topic post can lead to some very good software.  This list has actually
> pointed me at two projects I am now actively involved in, AimSniff and
> zoneminder.  (Also several other cool things I don't actively
> participate in)

I can see the advantages of this argument, and I'm following this thread
with great pleasure. I was merely reacting on the fact that m0n0wall
should get IPAM functionality.

- --
Version: GnuPG v1.4.3 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org