<html>
<body>
One more brick in the wall, the news story below tells us that major
vendors continue to create damage to be routed around.<br><br>
One could have hoped that in creating the IPv6 stacks of end systems,
vendor OS stacks and apps would be properly authenticated using IPSEC,
thus eliminating the need for (and ability to implement) firewalls that
must read payload content as if they knew what it meant.<br><br>
But alas, and to my great sadness, that was not to be.
Instead Cisco adopts the maze of twisty little passages approach, and
continues to encourage balkanization of the Internet. I
presume that these firewalls will demand that IPSEC traffic expose its
content before being allowed passage so instead of being more secure, the
traffic gets less secure.<br><br>
By 2006, I suspect there will be no "Inter" net to speak
of. Only a collection of nets that cannot send data to each
other.<br><br>
<font face="Courier New, Courier" size=2>CISCO AIMS FOR IPV6
FIREWALLS<br>
Posted June 27, 2003 4:44 PM Pacific Time<br><br>
<br><br>
<br><br>
Attacking one of the key problems early adopters have had<br><br>
with IPv6 (Internet Protocol Version 6), Cisco plans to<br><br>
beef up security, adding support for stateful packet<br><br>
filtering of IPv6 traffic to its software and hardware<br><br>
firewall products in the first half of next year.<br><br>
<br><br>
The dominant maker of Internet routers, also a major vendor<br><br>
of firewalls, provided that statement of direction at the<br><br>
North American IPv6 Global Summit, held this week in San<br><br>
Diego. Cisco demonstrated the filtering capability in its<br><br>
IOS (Internetwork Operating System) firewall at the<br><br>
conference, said Patrick Grossetete, Cisco IOS IPv6 product manager, in
an interview from the conference.<br><br>
<br><br>
For the full story:
<a href="http://www.infoworld.com/article/03/06/27/HNfirewallscisco_1.html">http://www.infoworld.com/article/03/06/27/HNfirewallscisco_1.html</a><br><br>
</font><font face="arial" size=2> <br>
</font></body>
</html>