November 11th, 2003


at the mercy of Raleigh

I woke up at 6:30 this morning to get into work by 7. Actual arrival time: 7:15. Reason for the early trip in: the people in Raleigh scheduled this time to add an inspection rule to the firewall in Boulder, so Boulder could active mode FTP through the firewall (which does NAT). I needed to be here for the test, to see if our servers saw the correct address...

It didn't work. I don't get it. You'd think that if they had people in Raleigh doing all the firewall work for the entire country's servers, they could have some real experts there, people who know that active mode FTP needs packets rewritten, so the server knows the right place to contact.

With this company's big support for Linux, you'd think they could put together a $300 PC running Linux to act as their firewall... I imagine they've got some really nice Cisco box, though, and it's more a question of knowing how to configure it or something. Who knows?

Whatever. I imagine a Belkin firewall for $70 at Best Buy would do this right. So it makes me grumpy.
  • Current Mood
    grumpy grumpy