Firewall suggestions needed

I have a windows 2000 server that is the PDC of the local network, has SQL server running, but it is not used yet, running another database that all users access, ARCserve is running, and terminal services is used for a remote office to access the database.

The server is sitting in the DMZ on a Linksys router, so the terminal services clients can access it. I tried to load Zone Alarms, but it would not install properly.

So does anyone have any ideas on a good firewall (hardware or software), that is also inexpensive?

Thanks,
Jimmy

PS: I have heard many folks bashing Norton for a network application, but can't seem to remember what those folks said was a good AV software package.

 

See here. You may need to update your firmware to get ZA to work.

I hate to recommend ZA, but as Linksys has (apparantly) partnered with both ZL and TM and as there are sizeable discounts on offer, I suppose ....

 

kerio aka tiny personal firewall

Hi Jimmy

I have recently installed the kerio personal firewall www.kerio.com which is free for personal use and I guess quite reasonable for business use. What is special about this firewall is that it is very configurable as opposed to the "dumbed down" bign names.

you may also consider joining their mailing list or simply visiting their group to gain a better insight and get futher advise - http://groups.yahoo.com/group/keriofirewall/messages

all the best

the jackal

 

Note that cheaper devices (like LinkSys) do not have a true DMZ because the DMZ host shares the same physical and logical network as the rest of the LAN. A real DMZ is isolated from the LAN in order to protect the LAN when the public server is compromised.

 

kerio aka tiny personal firewall

Hi Jimmy

I have recently installed the kerio personal firewall www.kerio.com which is free for personal use and I guess quite reasonable for business use. What is special about this firewall is that it is very configurable as opposed to the "dumbed down" bign names.

you may also consider joining their mailing list or simply visiting their group to gain a better insight and get futher advise - http://groups.yahoo.com/group/keriofirewall/messages

all the best

the jackal

 

I'd normally agree that Kerio (I too recently switched to Kerio from TPF) would be the better option, however, as this appears to be a business situation, beta software may not be considered appropriate. Maybe Kerio's non-beta predecessor, TPF, would be a better bet?

Jimmy also mentioned that he was looking for something inexpensive ... and under the Linksys offer the ZA license is cheaper than the Kerio license.

 

So I need to get a REAL router, and put my server in the DMZ and be okay?

Also, why so down on ZA? Seemed fairly strong to me (in my limited 2 stand alone PC experience). What makes you feel that way? This was the first problem I have had, but also the only server I have installed it on.

What makes one AV package better than the other? Never heard of the Tiny software, but will check it out.

Thanks for the feedback everyone!

 

See this.

IMO, the setup you've already described will provide a more than reasonable level of security and there's no need to switch routers (unless, that is, your organisation would be so affected by (the remote possibility) of data loss so as to make the additional expenditure worthwhile).

 

Thanks Brett.

I will get that upgraded and sleep a little easier.

Thanks-

 

Most everything that I am seeing here is software based, which is O.K. if performance isn't an issue. If you want something solid with a lot of flexibility and want the thing to run 24X7 without having to take it down for M$ patches and such , then you really need to look at a hardware solution....and if you really want to go all out, one on each end (corp. and remote office) for VPN. I'm a Cisco guy, but those are usually too expensive for most small operations. Linksys is REALLY for the home user and I would stay clear of it in a corporate environment. If you want something cheap and excellent, look at Netscreen , specifically the 5XP or the 25. These suckers are VERY FAST. I used two of the NS-100s for a distance learning network for the Secretary of the US Air Force...with all the streaming media that we could throw at it, they didn't miss a beat! Rock solid performance and features at a VERY reasonable price!!

Send me a private message and I'll hook you up with some folks out there that'll give you a good deal....and, "No!" I don't sell 'em!!!

 

You did not mention the number of workstations/servers that will be sitting behind the firewall. If you only have a few, 1-50 then I would recommend looking at the SonicWall SOHO series of firewalls. (they also make faster firewalls for larger networks)

Cost is relatively inexpensive & quality seems fairly good. I have several that have been running for quite some time and have been very happy with them.

They make several models, some with a DMZ some without, I have and do use both.
Each has Statefull packet inspection/DHCP/Multiple IP configurations/VPN/ & Macfee A/V capability/ as well as the some ability to content monitor/restrict.

The routing tables are easy to configure (out of the box works for most configurations) as are most other features of the devices. I'd give them a very good rating!