nhumphrey
asked on
Windows 98 on a dual network
We have some PCs on our network that are set up with 2 network cards. This is so that they can get access to different physical networks. These networks have a Unix Firewall between them. The management in our organisation would like the ability to use applications on both networks. However there are security implications as a result of doing it (therefore the Firewall!).
My question is: Is there firewall software (as good as any Unix firewall) for Windows 98 that we can secure these PCs on both networks with 2 network cards in them?
It works fine - but there is this security issue.
I have heard of various options, such as Zone Alarm www.zonelabs.com, Black Ice Defender www.networkice.com.
My question is: Is there firewall software (as good as any Unix firewall) for Windows 98 that we can secure these PCs on both networks with 2 network cards in them?
It works fine - but there is this security issue.
I have heard of various options, such as Zone Alarm www.zonelabs.com, Black Ice Defender www.networkice.com.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
I think Vijay is on the money. I would much rather use the unix box as the only path. But for what it's worth I have a few clients using Black ice with a no cracks yet. It seems to work fine. It is much better than a proxy or nothing for a network with that many holes.
ASKER
I am surprised and extremely extatic about the replies I have received.
Also, I apologise for the lack of details. It's a very complex and hard to explain situation and that was the simplest way I could put it.
You did assume correctly, but anyway ....
In answer to YOUR questions. No we would never replace a Unix firewall with a Windows one. It is just an unusual circumstance in which there is a unix firewall between 2 need-to-be-separate networks. And people that would like to use apps on both sides - which breaks the firewall rules anyway - and will only work in "Windows" (even though they complain about the constant crashing). Hense the dual-network idea. (We did try Windows NT originally just to confuse matters but the apps ran to slow as they're old 16-bit Windows software).
Out of the 3 replies so far your's seems to make the most sense. Why trust Windows as a firewall cause it isn't! I know it has too many holes, but personally I've never tried to crack them so I wouldn't know (LOL). Just to clear things up I am a neutral OS person!
Unfortunately the boss has already decided on 2 machines, 1 on each network with a switch between them. So be it. I accept the challenge.
Otherwise I might have gone for a solution Like Black Ice or Unix firewall rules (however, the latter I don't really understand yet)
Now if you'll excuse me : I've been accused of using a lousy insecure password : time to change the server accounts.
Also, I apologise for the lack of details. It's a very complex and hard to explain situation and that was the simplest way I could put it.
You did assume correctly, but anyway ....
In answer to YOUR questions. No we would never replace a Unix firewall with a Windows one. It is just an unusual circumstance in which there is a unix firewall between 2 need-to-be-separate networks. And people that would like to use apps on both sides - which breaks the firewall rules anyway - and will only work in "Windows" (even though they complain about the constant crashing). Hense the dual-network idea. (We did try Windows NT originally just to confuse matters but the apps ran to slow as they're old 16-bit Windows software).
Out of the 3 replies so far your's seems to make the most sense. Why trust Windows as a firewall cause it isn't! I know it has too many holes, but personally I've never tried to crack them so I wouldn't know (LOL). Just to clear things up I am a neutral OS person!
Unfortunately the boss has already decided on 2 machines, 1 on each network with a switch between them. So be it. I accept the challenge.
Otherwise I might have gone for a solution Like Black Ice or Unix firewall rules (however, the latter I don't really understand yet)
Now if you'll excuse me : I've been accused of using a lousy insecure password : time to change the server accounts.
PC1: This box will basically act as your gateway, with the firewall software installed on it. The first NIC will give it LAN access, the second will be used for your Internet connection, whatever it may be (T1, DSL, etc.)
PC2: All you should have to do on this box is specify PC1's IP address as it's gateway, along with the DNS info. Should work like a champ.
Let me know if this doesn't work for ya.