56k dial up on laptop 802.11G ?

On Sat, 30 Jul 2005 09:14:11 -0800, floyd@apaflo.com (Floyd L.
Davidson) wrote:

In the interest of accuracy, a few corrections and amplifications:
http://www.watchguard.com/products/fireboxsoho6tc.asp

>Linksys Wireless Router/Firewall Watchguard "FW Appliance"
>WRT54G Firefox SOHO 6tc Wireless
>
>Price: $50 $510

Watchguard 6tc is about $430 for 10 users street price. They
typically go for about $150-$200 on eBay.
http://cgi.ebay.com/ws/eBayISAPI.dll...tem=7172793071

>Max DHCP clients: 253 10

Watchguard's 10 user limit can be increased to 25 or 50 users by
adding additional user licenses. A nasty side effect of this is that
Watchguard (and Sonicwall) both consider IP addresses heard to be
users, even if the user is a network printer or computer that never
routes through the Watchguard. This creates havoc if there are more
than 10 devices on the LAN side.

>remote access: HTTP/HTTPS no

Watchguard has a feature called MUVPN which is a single user VPN
termination in the router used strictly for remote management. See:
http://www.watchguard.com/help/docs/...anageGuide.pdf
for instructions. The MUVPN client is free to registered owners.

>WAN-LAN throughput: 19.7 Mbps 3.1 Mbps
>UDP stream rate: 498 Kbps 499 Kbps
>LAN-WAN throughput: 21.7 Mbps 7.4 Mbps

Seems far too low for a Watchguard 6tc. My guess is that the
3.1Mbits/sec is the 11Mbit/sec wireless performance, not the wired
router performance. The 6tc has a 150Mhz processor which can do about
75Mbits/sec for conventional routing and about 20Mbits/sec through a
VPN tunnel.

>Triggered port
> mapping: yes no

The lack of port triggering in the Watchguard is a real irritation. I
have several applications (Echolink, various games) that function best
with port triggering instead of redirection. Note that the Watchguard
is also missing port reassignment (I thinks that's what it's called),
where I can map an outside port number to a different port number on
the inside. For example, if I telnet to port 2000 on the WAN side, I
might want it to come out on port 23 on the LAN side.

>Loopback: yes ??

Well, I think everything with TCP/IP has a loopback port somewhere.

>Content controls: yes can block HTTP access to a

Watchguard has a content filtering and URL blocking service.
http://www.watchguard.com/products/webblock.asp
http://www.watchguard.com/products/promo_webblocker.asp

>Qos: yes ??

No QoS or bandwidth management for Watchguard.

You might find this (added cost) multihoming Watchguard feature
interesting:
http://www.watchguard.com/products/dualisp.asp
I think I can convince Alchemy to do that but not as delivered.

>VPN other:
> Endpoint: no yes
> Co-processor: no yes

WRT54G with Alchemy firmware can terminate a PPTP tunnel. The PPTP
client is missing in Alchemy, but can be easily added. I haven't
tried a WRT54G to WRT54G PPTP VPN yet.

The data sheet claims that ICSA certification is pending.

I have Watchguard SOHO routers at various customers (no wireless).
They work nicely but I have some issues with the company. They want
$75/year for a support contract. If I don't subscribe, I don't get
upgrades or client software. Upgrades have apparently stopped for
older obsolete products.

When I picked up a use SOHO router, I found that someone had reset the
router to defaults, which clears any firmware upgrades. It was
running the most basic "backup" firmware. In order to bring it up to
date, Watchguard support demanded I purchase a contract. After some
negotiation, I convinced them to give me the stupid firmware and to
get out of my life, especially since the old SOHO is discontinued and
it is highly unlikely that I'll see any further upgrades to justify
paying for support. I didn't need a relationship, just the stupid
firmware image. It took a bit of trickery to install, but it's now
updated and sitting in the closet.

Incidentally, it's really easy to accidentally reset a Watchguard.
Just plug a cable between two LAN ports and apply power. Say goodby
to your configuration and firmware:
http://www.corecom.com/external/live...horecovery.htm

There is one really nice Watchguard feature. The box is bright red,
which methinks is proper for a firewall. (Better red than dead?)


--
Jeff Liebermann jeffl@comix.santa-cruz.ca.us
150 Felker St #D http://www.LearnByDestroying.com
Santa Cruz CA 95060 http://802.11junk.com
AE6KS 831-336-2558

> appliance and I'll admit to it. I am just a man like evryone else. FF has
> gone off the deep-end and you're right there with him.

Hardly, since I just joined a moment ago with the nice little gem about
Cisco PIX not meeting your/your mates firewall spec until a specific
version of IOS - pure fact, direct from Cisco. Deal with it.

Duane, you were done with this thread twice now, why keep coming back?

David.

> different from a packet filtering FW router. And again, the TOP GUN in
> that other NG confirmed that to me long ago.

Is that the same guy that just decided that what constitues a firewall
has is different depending one what version of Cisco IOS someones PIX is
running?

Forget the Linksys for a moment and just consider what Jeff eloquently
wrote a while ago. A firewall does not need to meet one persons spec to
be the thing known universally as a firewall. To meet a certain
functional spec for a particular deployment, sure but not everyones
needs are the same.

David.

Jeff Liebermann <jeffl@comix.santa-cruz.ca.us> wrote:
>On Sat, 30 Jul 2005 09:14:11 -0800, floyd@apaflo.com (Floyd L.
>Davidson) wrote:
>
>In the interest of accuracy, a few corrections and amplifications:
>http://www.watchguard.com/products/fireboxsoho6tc.asp

Great. As I noted, all of the Watchguard figures came from a
review on TomsHardward site, and which was last updated in November
2003. They also had a review of the WRT54G, but it was filled with
*many* errors (the product had just been released at the time).

>>Linksys Wireless Router/Firewall Watchguard "FW Appliance"
>>WRT54G Firefox SOHO 6tc Wireless
>>
>>Price: $50 $510

I should have mentioned that the prices were 2003 "street price"
according to the TomsHardware web site reviews.

>Watchguard 6tc is about $430 for 10 users street price. They
>typically go for about $150-$200 on eBay.

New or used? The Linksys units go for $20-40 used. No doubt the
introduction of the Linksys cause the value of used Watchguard units
to take a dramatic fall.

>>Max DHCP clients: 253 10
>
>Watchguard's 10 user limit can be increased to 25 or 50 users by
>adding additional user licenses. A nasty side effect of this is that
>Watchguard (and Sonicwall) both consider IP addresses heard to be
>users, even if the user is a network printer or computer that never
>routes through the Watchguard. This creates havoc if there are more
>than 10 devices on the LAN side.

Yikes! With the WRT54G there simply is no limit, of course.
The specified figure is merely how many DHCP addresses it will
serve. I'm not sure that is an accurate figure either, as it
may be possible to assign addresses within a 16 bit subnet,
rather than just a 24 bit subnet. (It isn't worth the effort to
find out, and the web interface only does a 24 bit subnet.)

>>remote access: HTTP/HTTPS no
>
>Watchguard has a feature called MUVPN which is a single user VPN
>termination in the router used strictly for remote management. See:
> http://www.watchguard.com/help/docs/...anageGuide.pdf
>for instructions. The MUVPN client is free to registered owners.

Okay. I did see a reference on their web page (after that was
posted) which said something about remote administration.

>>WAN-LAN throughput: 19.7 Mbps 3.1 Mbps
>>UDP stream rate: 498 Kbps 499 Kbps
>>LAN-WAN throughput: 21.7 Mbps 7.4 Mbps
>
>Seems far too low for a Watchguard 6tc. My guess is that the
>3.1Mbits/sec is the 11Mbit/sec wireless performance, not the wired
>router performance. The 6tc has a 150Mhz processor which can do about
>75Mbits/sec for conventional routing and about 20Mbits/sec through a
>VPN tunnel.

Those numbers *all* have to be through the wireless! Even the
WRT54G numbers are too low. Compared to the Watchguard unit,
the Linksys box has a 200 Mhz cpu (both use a MIPS processor,
but they are from different manufacturers, so I don't know how
closely they compare).

>>Triggered port
>> mapping: yes no
>
>The lack of port triggering in the Watchguard is a real irritation. I
>have several applications (Echolink, various games) that function best
>with port triggering instead of redirection. Note that the Watchguard
>is also missing port reassignment (I thinks that's what it's called),
>where I can map an outside port number to a different port number on
>the inside. For example, if I telnet to port 2000 on the WAN side, I
>might want it to come out on port 23 on the LAN side.
>
>>Loopback: yes ??
>
>Well, I think everything with TCP/IP has a loopback port somewhere.

That isn't what "loopback" refers to though. You'll note in the
configuration for a WRT54G (with any of the third party firmware
releases) that you can disable "loopback". That doesn't affect
whether the lo device (IP 127.n.n.n) works, but changes whether
the router/firewall allows traffic to be looped back to the
internal network or not. Global loopback has the (dis)advantage
of allowing any application to use the local proxy. If it is
allowed then an internal application can sent packets to the
external IP address, through the firewall, and have it forwarded
back through.

Probably that should be listed as "Loopback enable/disable".

>>Content controls: yes can block HTTP access to a
>
>Watchguard has a content filtering and URL blocking service.
> http://www.watchguard.com/products/webblock.asp
> http://www.watchguard.com/products/promo_webblocker.asp

The Webblock optional software is not content filtering of
packets though. It is a data base of URLs with supposedly known
content type. Hence if you don't want anyone browsing "adult"
sites, it will block that type of URLs by address, as one
example.

The higher end Watchguard products (none of which include wireless)
can filter packets for appropriate protocols (FTP, HTTP, etc.).
The WRT54G can do the same for some protocols, but does not have
such filtering for HTTP.

>>Qos: yes ??
>
>No QoS or bandwidth management for Watchguard.
>
>You might find this (added cost) multihoming Watchguard feature
>interesting:
> http://www.watchguard.com/products/dualisp.asp
>I think I can convince Alchemy to do that but not as delivered.

That wouldn't really be too hard to do. One of the LAN ports
has to be isolated with a VLAN, and then connected to the Linux
Ethernet device if connectivity is lost on the WLAN port.

That probably isn't really very useful for most home or small
business users, who need the LAN port and don't have an extra
*unused* cable/dsl connection.

>>VPN other:
>> Endpoint: no yes
>> Co-processor: no yes
>
>WRT54G with Alchemy firmware can terminate a PPTP tunnel. The PPTP
>client is missing in Alchemy, but can be easily added. I haven't
>tried a WRT54G to WRT54G PPTP VPN yet.
>
>The data sheet claims that ICSA certification is pending.
>
>I have Watchguard SOHO routers at various customers (no wireless).
>They work nicely but I have some issues with the company. They want
>$75/year for a support contract. If I don't subscribe, I don't get
>upgrades or client software. Upgrades have apparently stopped for
>older obsolete products.

I noticed that some optional features are available as a
subscription! Pay by the year...

>When I picked up a use SOHO router, I found that someone had reset the
>router to defaults, which clears any firmware upgrades. It was
>running the most basic "backup" firmware. In order to bring it up to
>date, Watchguard support demanded I purchase a contract. After some
>negotiation, I convinced them to give me the stupid firmware and to
>get out of my life, especially since the old SOHO is discontinued and
>it is highly unlikely that I'll see any further upgrades to justify
>paying for support. I didn't need a relationship, just the stupid
>firmware image. It took a bit of trickery to install, but it's now
>updated and sitting in the closet.
>
>Incidentally, it's really easy to accidentally reset a Watchguard.
>Just plug a cable between two LAN ports and apply power. Say goodby
>to your configuration and firmware:
> http://www.corecom.com/external/live...horecovery.htm
>
>There is one really nice Watchguard feature. The box is bright red,
>which methinks is proper for a firewall. (Better red than dead?)

:-)

--
Floyd L. Davidson <http://www.apaflo.com/floyd_davidson>
Ukpeagvik (Barrow, Alaska) floyd@apaflo.com

On Sun, 31 Jul 2005 00:37:55 -0800, floyd@apaflo.com (Floyd L.
Davidson) wrote:

>>Watchguard 6tc is about $430 for 10 users street price. They
>>typically go for about $150-$200 on eBay.

>New or used? The Linksys units go for $20-40 used. No doubt the
>introduction of the Linksys cause the value of used Watchguard units
>to take a dramatic fall.

Watchguard 6tc typically goes for about $430 new. About half or less
used on eBay. Watchguard sells through dealers and direct at full
$700 list price. $1000 for 50 users.
http://www.guardsite.com/SOHO6tcWireless.asp
Online prices from $400 to $450.
http://www2.shopping.com/xPC-~PD-20652720~NS-1
http://geek.pricegrabber.com/search_...asterid=611271
Note that this includes one year of "Live Security" updates.
Incidentally, the Watchguard SOHO and Sonicwall SOHO have quite
similar features and issues.

>Yikes! With the WRT54G there simply is no limit, of course.
>The specified figure is merely how many DHCP addresses it will
>serve. I'm not sure that is an accurate figure either, as it
>may be possible to assign addresses within a 16 bit subnet,
>rather than just a 24 bit subnet. (It isn't worth the effort to
>find out, and the web interface only does a 24 bit subnet.)

It works. I ran into that problem over and over with Sonicwall. I
had an office with 8 IP's in use. No problem with a 10 user limit.
However, laptops kept appearing on the office. What would happen is
that someone would turn off a desktop machine, a few laptops would
drift by causing the user count to max out. Then, the desktop would
get turned on in the morning and find that it cannot connect to the
internet. The algorithm for adding/dropping DHCP clients is to wait
until the lease expires, which required that I cut the lease time down
to an hour to get it to sorta work. I don't know if Watchguard has
the same problem, but I suspect it does. Incidentally, both
Watchguard and Sonicwall will assign up to 253 IP addresses from the
DHCP server, but only route the first 10 (depending on license).

I found a better solution by using a /16 subnet instead of the usual
/24. I would put devices that didn't need internet access in the
subnet that did not see the router. However, that didn't solve the
transient laptop issue, which required a short lease time, or power
cycling the router, to be functional.

>Those numbers *all* have to be through the wireless! Even the
>WRT54G numbers are too low. Compared to the Watchguard unit,
>the Linksys box has a 200 Mhz cpu (both use a MIPS processor,
>but they are from different manufacturers, so I don't know how
>closely they compare).

Ok. They kinda looked like wireless performance results. Note that
using the router to terminate a VPN really puts a load on the CPU,
which therefore has a big effect on performance. I don't have any
reproducible numbers but I've seen over 50% drop in thruput.

>Probably that should be listed as "Loopback enable/disable".

No such feature in Watchguard or Sonicwall that I can find.

>>Watchguard has a content filtering and URL blocking service.
>> http://www.watchguard.com/products/webblock.asp
>> http://www.watchguard.com/products/promo_webblocker.asp
>
>The Webblock optional software is not content filtering of
>packets though. It is a data base of URLs with supposedly known
>content type. Hence if you don't want anyone browsing "adult"
>sites, it will block that type of URLs by address, as one
>example.

It's basically a blacklist with some keyword checking in the URL. I
did a dumb thing and added my name to the keyword list to see how it
worked. It didn't do anything so I stupidly left it. Then, I later
went to do an online order. The URL sent by the web page included my
name. I was instantly greeted with a "banned site" error message and
a trashed online order. Oops. This type of web keyword and blacklist
web filtering is really only designed for restricting access to
"adult" sites, and not as some kind of firewall protection feature.

>That wouldn't really be too hard to do. One of the LAN ports
>has to be isolated with a VLAN, and then connected to the Linux
>Ethernet device if connectivity is lost on the WLAN port.
>That probably isn't really very useful for most home or small
>business users, who need the LAN port and don't have an extra
>*unused* cable/dsl connection.

Agreed. However, it is an interesting feature. I setup one customer
with a 3Com LAN Modem for dialup backup via Watchguard Dual ISP
feature. There are probably better ways to do it, but this customer
already had the hardware, so it was an easy solution. (Speaking of
reliable, my DSL has been going up and down all morning).

That brings up the issue of command line editing. The WRT54G with
Alchemy firmware has an easily accessible and useful command line
available through telnet. Watchguard has a command line available
through an obscure procedure, but the commands are not documented or
officially supported. I've had support walk me through the cerimony
once, but don't recall the details. I think it's VxWorks based, but I
keep forgetting to check when I dive in there.

>I noticed that some optional features are available as a
>subscription! Pay by the year...

If you ever need an exercise in futility, try defining the ultimately
fair and universally acceptable method of charging for router
features. You can pay by the month, by the year, as part of a service
contract, in the original selling price, as part of per-feature
upgrades, or with a company wide site license. Whatever works, but
you still pay. You can't give it away or the company goes broke.

>>There is one really nice Watchguard feature. The box is bright red,
>>which methinks is proper for a firewall. (Better red than dead?)

I was thinking of buying some flame decals like the ones the model hot
rod cars have coming out of the wheel wells. Those would look nice on
a firewall. If it's gonna play firewall, it's gotta look like a wall
on fire.


--
Jeff Liebermann jeffl@comix.santa-cruz.ca.us
150 Felker St #D http://www.LearnByDestroying.com
Santa Cruz CA 95060 http://802.11junk.com
AE6KS 831-336-2558

David Taylor <djtaylor@bigfoot.com> wrote in
news:MPG.1d56974a15a354c9989d14@news.cable.ntlworl d.com:

>> different from a packet filtering FW router. And again, the TOP GUN in
>> that other NG confirmed that to me long ago.
>
> Is that the same guy that just decided that what constitues a firewall
> has is different depending one what version of Cisco IOS someones PIX is
> running?

You post to me and expect me not to respond? And what are you talking about
here in the first place? Wait, I really don't want to know.

>
> Forget the Linksys for a moment and just consider what Jeff eloquently
> wrote a while ago.

Yes indeed let's forget about what FF has said as he is no authority on
anything.

> A firewall does not need to meet one persons spec to
> be the thing known universally as a firewall. To meet a certain
> functional spec for a particular deployment, sure but not everyones
> needs are the same.

The above can be said about a lot of things.

And it did get a little hot and heavy about the 54G in the FW NG by two Top
Dogs. I read what I needed to about a 54G and the 3rd party firmware
solution.

What happened in this thread over last few days is worthless to me as some
nut with a wild hire needed to stand up and be counted.

Duane :)

> > Is that the same guy that just decided that what constitues a firewall
> > has is different depending one what version of Cisco IOS someones PIX is
> > running?
>
> You post to me and expect me not to respond? And what are you talking about
> here in the first place? Wait, I really don't want to know.

Well Duane, you have twice said that you were done with this thread yet
you keep on posting.

Please answer yes or no to the following question.

Is a Cisco Pix firewall that runs IOS 11 a firewall or not?

Only YES or NO remember.

David.

>
> Please answer yes or no to the following question.
>
> Is a Cisco Pix firewall that runs IOS 11 a firewall or not?
>
> Only YES or NO remember.

Let me go one better for you.

I DON'T CARE.

If the answer is good enough for you or not good enough for you guess what?

I DON'T CARE. <g>

You're not God out here so please go straight to Hell. :)

Duane :)

> I DON'T CARE.

Is that a yes or a no? I need to know whether I have a firewall or not
:)

David Taylor <djtaylor@bigfoot.com> wrote in
news:MPG.1d5ca36dc5ca1aa9989d22@news.cable.ntlworl d.com:

>> I DON'T CARE.
>
> Is that a yes or a no? I need to know whether I have a firewall or not
>:)
>

I got some other things to do now. Don't you?

Later *D*

Duane :)

> I got some other things to do now. Don't you?

Not really but i'd sure like to know if this PIX is a firewall or not.
:)

David Taylor <djtaylor@bigfoot.com> wrote in
news:MPG.1d5d2481fc6bb504989d24@news.cable.ntlworl d.com:

>> I got some other things to do now. Don't you?
>
> Not really but i'd sure like to know if this PIX is a firewall or not.
>:)
>

You're a big boy you should be able to figure somethings out on your own.
If you can play in traffic and not get hit, you'll be on your way. <g>

Duane :)

> You're a big boy you should be able to figure somethings out on your own.
> If you can play in traffic and not get hit, you'll be on your way. <g>

I think it is, regardless of which version of IOS which shoots down Mr
Top Gun in the firewalls newsgroup doesn't it? :)

David.

David Taylor <djtaylor@bigfoot.com> wrote in
news:MPG.1d5db242b14f900989d26@news.cable.ntlworld .com:

>> You're a big boy you should be able to figure somethings out on your
>> own. If you can play in traffic and not get hit, you'll be on your
>> way. <g>
>
> I think it is, regardless of which version of IOS which shoots down Mr
> Top Gun in the firewalls newsgroup doesn't it? :)
>
> David.
>

Honestly, I don't know what you're talking about and don't want to know.
It's not like I read any link that you posted and don't post the link now
either. :)

BTW, this sounds like a *personal* problem. <g>


Duane :)

> Honestly, I don't know what you're talking about and don't want to know.
> It's not like I read any link that you posted and don't post the link now
> either. :)

Re-cap:-

Question: Is the Linksys WRT54G a firewall

Duane: "I'll ask the Top Gun..."

Top Gun: "Only when it can tell whether it's HTTP(S) or not on port 80"
(in other words application layer inspection)

I then post that pre-IOS 12.3(4) that Cisco PIX doesn't do this and so
that is my question.

According to Mr Top Gun, the Cisco PIX firewall cannot be a firewall
unless it has a specific version of IOS. I think Cisco and their
customers will disagree with Mr Top Gun.

Is that right Duane or has Mr Top Gun got it wrong?

David.

David Taylor <djtaylor@bigfoot.com> wrote in
news:MPG.1d5dcb9f324ff381989d28@news.cable.ntlworl d.com:

>> Honestly, I don't know what you're talking about and don't want to
>> know. It's not like I read any link that you posted and don't post
>> the link now either. :)
>
> Re-cap:-
>
> Question: Is the Linksys WRT54G a firewall
>
> Duane: "I'll ask the Top Gun..."
>
> Top Gun: "Only when it can tell whether it's HTTP(S) or not on port
> 80" (in other words application layer inspection)
>
> I then post that pre-IOS 12.3(4) that Cisco PIX doesn't do this and so
> that is my question.
>
> According to Mr Top Gun, the Cisco PIX firewall cannot be a firewall
> unless it has a specific version of IOS. I think Cisco and their
> customers will disagree with Mr Top Gun.
>
> Is that right Duane or has Mr Top Gun got it wrong?

I just love it when a man resorts to a woman's tactics. <g>

You go Dave.

Duane :)

You should get a life David get life.

Duane :)

Is Cisco PIX a firewall Duane, go ask Mr Top Gun if you're not sure.

:)

David Taylor <djtaylor@bigfoot.com> wrote in
news:MPG.1d5e7c8ffee8ff89989d2a@news.cable.ntlworl d.com:

>
> Is Cisco PIX a firewall Duane, go ask Mr Top Gun if you're not sure.
>
>:)
>

When you click your heels 54 times, recite your alphabet from A-G making
sure you stop at *G*, shit a PIX out of your ass, and stop acting like a
*pussy* David Girly-Man Taylor, your wish may come true. ;-)

Duane :)

Duane Arnold <notme@notme.com> wrote:
>David Taylor <djtaylor@bigfoot.com> wrote in
>news:MPG.1d5e7c8ffee8ff89989d2a@news.cable.ntlwor ld.com:
>
>>
>> Is Cisco PIX a firewall Duane, go ask Mr Top Gun if you're not sure.
>>
>>:)
>>
>
>When you click your heels 54 times, recite your alphabet from A-G making
>sure you stop at *G*, shit a PIX out of your ass, and stop acting like a
>*pussy* David Girly-Man Taylor, your wish may come true. ;-)

It's never hard to tell when Duane realizes he's been cornered,
again.

--
Floyd L. Davidson <http://www.apaflo.com/floyd_davidson>
Ukpeagvik (Barrow, Alaska) floyd@apaflo.com

> When you click your heels 54 times, recite your alphabet from A-G making
> sure you stop at *G*, shit a PIX out of your ass, and stop acting like a
> *pussy* David Girly-Man Taylor, your wish may come true. ;-)

So is that a yes or a no Duane.

Surely it's easier just to put a stake in the ground than to keep
sidestepping the simplest question posed?

David.

"David Taylor" <djtaylor@bigfoot.com> wrote in message
news:MPG.1d5ed9b92cc16af3989d2d@news.cable.ntlworl d.com...
>> When you click your heels 54 times, recite your alphabet from A-G making
>> sure you stop at *G*, shit a PIX out of your ass, and stop acting like a
>> *pussy* David Girly-Man Taylor, your wish may come true. ;-)
>
> So is that a yes or a no Duane.
>
> Surely it's easier just to put a stake in the ground than to keep
> sidestepping the simplest question posed?

What part of it didn't you understand? That you're not God out here? I
don't dance to your tune? And besides, I asked you're mama about it when I
CISCO PIXed her and she said it was all good. ;-)

Duane :)

I am an EOR specialist David - Equal Opportunity Ragger.

That means I'll dog you out, your family, house, dog, cat, car etc and have
a little fun with the *Rag* game.

All I am doing is having a little fun here. Maybe, you're too *stupid* to
realize the game. You do seem to be stuck in a rut. Can you crank it up a
notch you're boring me to death.

Duane :)

So Duane, is a Cisco PIX a firewall or not?.

"David Taylor" <djtaylor@bigfoot.com> wrote in message
news:MPG.1d5ef448a81f5b27989d30@news.cable.ntlworl d.com...
> So Duane, is a Cisco PIX a firewall or not?.

Girly-man Taylor did you ask your *HO* ass mama?

Duane :)

Well, Dave-etta Girly-Man Taylor it's been fun. Tell your mama I said
*hello*. You can have the last post, because there is something in the
water you're drinking. ;-)

Daddy *D* :)

>
> It's never hard to tell when Duane realizes he's been cornered,
> again.
>

Oh, you should go back and pull some other posts I have made over the years
like you have done in the past like a *girl* when I have dogged someone out
here on the Internet when it comes to the *rag* game to see just how
concerned I am about it. <g>

FF you're a gutless POS North in Alaska with those cold nights and the 54G
mistress. ;-)

Hey Duane, is a Cisco PIX a firewall?

Thanks.