Announcement

Collapse
No announcement yet.

Firewall Choices :)

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Firewall Choices :)

    Hi, I'm looking for a firewall solution for our business... the built in SPI firewall with our belkin router is probably not good enough, or is it? Anyone have a cheap solution that would protect us better? I probably dont want to configure a Cisco PIX of anything like that but maybe something in between.

    Thanks!

    Tyler

  • #2
    Re: Firewall Choices

    most routers are not capable enough for firewalling.
    Why?

    because they only worked on level 1 and 2 of the osi model (physical and datalink layer)

    Because most attacks are between level 4-7 (Transport, session, presentation, application layers) which routers won't support.

    so exually you need a firewall Which support SPI (stateful packet inspection)

    Best solution is check point firewall, which protect you on all OSI model layers.
    but its also the most pricy one.

    If you need to watch you're budget, i would choose for ISA 2004, which have some techniques from Checkpoint, who has released those.
    Marcel
    Technical Consultant
    Netherlands
    http://www.phetios.com
    http://blog.nessus.nl

    MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
    "No matter how secure, there is always the human factor."

    "Enjoy life today, tomorrow may never come."
    "If you're going through hell, keep going. ~Winston Churchill"

    Comment


    • #3
      Re: Firewall Choices

      Well, the router I have uses a SPI Firewall so maybe its okay? But I'll look into the ISA 2004 etc. too..

      Thanks again,
      Tyler

      Comment


      • #4
        Re: Firewall Choices

        Take a look at smoothwall:

        http://www.smoothwall.org/

        It's an open source linux firewall. Use a web interface to make teh changes so no real linux experience necessary.

        Michael
        Michael Armstrong
        www.m80arm.co.uk
        MCITP: EA, MCTS, MCSE 2003, MCSA 2003: Messaging, CCA, VCP 3.5, 4, 5, VCAP5-DCD, VCAP5-DCA, ITIL, MCP, PGP Certified Technician

        ** Remember to give credit where credit is due and leave reputation points sigpic where appropriate **

        Comment


        • #5
          Re: Firewall Choices

          SPI is very important in my oppinion.
          But also Reporting, logging an easy to manage.

          Smoothwall is indeed a nice open souce firewall, only what about the support?
          Marcel
          Technical Consultant
          Netherlands
          http://www.phetios.com
          http://blog.nessus.nl

          MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
          "No matter how secure, there is always the human factor."

          "Enjoy life today, tomorrow may never come."
          "If you're going through hell, keep going. ~Winston Churchill"

          Comment


          • #6
            Re: Firewall Choices

            Originally posted by Dumber
            Smoothwall is indeed a nice open souce firewall, only what about the support?
            If you want the free version then you will have to use the forums but....

            http://www.smoothwall.net/support/

            They have set-up a company where you can purchase smoothwall and get all the support as well. Not too sure on the costs thought but I bet they will be quite low

            Michael
            Michael Armstrong
            www.m80arm.co.uk
            MCITP: EA, MCTS, MCSE 2003, MCSA 2003: Messaging, CCA, VCP 3.5, 4, 5, VCAP5-DCD, VCAP5-DCA, ITIL, MCP, PGP Certified Technician

            ** Remember to give credit where credit is due and leave reputation points sigpic where appropriate **

            Comment


            • #7
              Re: Firewall Choices

              Hey cool, thx.. now i'll just need to scrap together a computer and a NIC and we'll be in business hehe

              Comment

              Working...
              X