1. Advertising
    y u no do it?

    Advertising (learn more)

    Advertise virtually anything here, with CPM banner ads, CPM email ads and CPC contextual links. You can target relevant areas of the site and show ads based on geographical location of the user if you wish.

    Starts at just $1 per CPM or $0.10 per CPC.

Software Firewall

Discussion in 'Security' started by pc_user, Jul 2, 2007.

  1. #1
    What would you recommend as the best software based firewall for enterprise solutions? Like so much like iptables but more web interface, fully manageable.
    SEMrush
    ipcops.com comes to mind but seems to be more soho type, anything out there enterprise grade?
     
    pc_user, Jul 2, 2007 IP
    SEMrush
  2. clancey

    clancey Peon

    Messages:
    1,100
    Likes Received:
    63
    Best Answers:
    0
    Trophy Points:
    0
    #2
    If you are looking at an enterprise solution, you might want to check out http://www.untangle.com/

    I have not had a chance to try their offerings, but their concept looks very interesting . . . and easy to configure.
     
    clancey, Jul 2, 2007 IP
  3. recursive

    recursive Peon

    Messages:
    18
    Likes Received:
    2
    Best Answers:
    0
    Trophy Points:
    0
    #3
    It all depends on your needs.
    What network are you planning to protect?
    Where do you plan to deploy it?
    Please elaborate if you can.

    For an enterprise level firewall, i would consider using checkpoint firewalls. Definitely not free, but good value for your money.
     
    recursive, Jul 2, 2007 IP
  4. pc_user

    pc_user Notable Member

    Messages:
    1,891
    Likes Received:
    94
    Best Answers:
    0
    Trophy Points:
    235
    #4
    > What network are you planning to protect?

    Financial services network.

    > Where do you plan to deploy it?

    I assume you mean internal or external, it's for internet use.

    Thanks for the checkpoint reference, good start. Yes, looking for software, I find it's a much better choice, after all, even hardware based solutions are just software on a box.
     
    pc_user, Jul 2, 2007 IP
  5. recursive

    recursive Peon

    Messages:
    18
    Likes Received:
    2
    Best Answers:
    0
    Trophy Points:
    0
    #5
    Here are a few firewalls i can recommend, most are hardware:
    Checkpoint running on Secure Platform OS - Software
    Checkpoint UTM - an all in one hardware solution (firewall, antivirus...) - This is actually Crossbeam hardware
    Fortigate - Hardware all in one (IPS, Antivirus, Firewall, SSL VPN...)
    Nokia - Hardware Running checkpoint software
    Juniper (netscreen) has great solutions in this field.

    Personally i cant recommend cisco firewalls.

    Are you planning to protect servers or users, or both?
     
    recursive, Jul 2, 2007 IP
  6. pc_user

    pc_user Notable Member

    Messages:
    1,891
    Likes Received:
    94
    Best Answers:
    0
    Trophy Points:
    235
    #6
    These are all servers. Thanks, I'll check into it but not interested in hardware, only software.

    Idea, what's wrong with running a linux based firewall with snort? Wouldn't that have the same end result?
     
    pc_user, Jul 3, 2007 IP
  7. eukvps

    eukvps Guest

    Messages:
    56
    Likes Received:
    3
    Best Answers:
    0
    Trophy Points:
    0
    #7
    well CSF is another firewall which can be managed through web interface , but we recommed using apf , eventhough it is not manageable through web interface.

    but it provide better solution than any other.

    Regards,

    Arun K
    -------------------
    http://www.eukvps.com
    Cheap & Reliable VPS Hosting
     
    eukvps, Jul 4, 2007 IP
  8. recursive

    recursive Peon

    Messages:
    18
    Likes Received:
    2
    Best Answers:
    0
    Trophy Points:
    0
    #8
    recursive, Jul 4, 2007 IP
  9. pc_user

    pc_user Notable Member

    Messages:
    1,891
    Likes Received:
    94
    Best Answers:
    0
    Trophy Points:
    235
    #9

    My topics are article worthy, that's pretty cool, thanks ;)
     
    pc_user, Jul 4, 2007 IP
  10. craigedmonds

    craigedmonds Notable Member

    Messages:
    671
    Likes Received:
    91
    Best Answers:
    0
    Trophy Points:
    220
    #10
    Try BlackICE server from ISS.

    Its a software firewall and is very easy to implement and manage.

    The gui is very nice and informative.
     
    craigedmonds, Jul 5, 2007 IP
  11. pc_user

    pc_user Notable Member

    Messages:
    1,891
    Likes Received:
    94
    Best Answers:
    0
    Trophy Points:
    235
    #11

    Thanks but I am looking for more enterprise level options. Testing IPCop now. Going to try that. The only problem appears that it needs to be installed locally so trying to find ways around that.

    Thanks all.
     
    pc_user, Jul 5, 2007 IP
  12. pc_user

    pc_user Notable Member

    Messages:
    1,891
    Likes Received:
    94
    Best Answers:
    0
    Trophy Points:
    235
    #12
    Just to report back to everyone,

    IPCop 1.4.14 + Copfilter 8.4 beta is a great combination.

    The only challenge of course is because it has to be installed at the console, might not be able to use for remote locations but anyone considering a very good firewall + ids + traffic filter should consider this great open source combination IMO.
     
    pc_user, Jul 6, 2007 IP