I recently ordered a dedicated server that came with windows server 2003 web edition. I would like to install a different firewall on this box because the one i'm using I don't like. First a little background on the box and what I have done so far.
The box is windows server 2003 WEB EDITION. This means it comes with no ICF, otherwise that would be good enough for the time being. The box is also at a NOC of which I do not have control over, so there would be no chance I could setup something hardware related. The solution must be software that is on the box itself. So then my first inclination would be to use ZoneAlarm from ZoneLabs. I purchased this firewall, installed it and it seems to "do the job" to an extent, but there are a few things that make me nervous about using zonealarm:
1) during the install, i was told that zonealarm isn't intended for server environments and that my installation would not be supported.
2) zonealarm has program access control... a nice feature but i don't deem that nessecary right now. I just want your basic port lockdown kind of tool... besides... zonealarm kicked me out of my terminal service session (i have no physical access to the box) the first time i installed it, and I had to wait for a support tech to open port 3389 before i could continue setting it up.
3) users have reported sporatic access to certain ports on my box... some users can't open certain ports at all on my box, while others can.
4) under a normal confinguration, i can only use terminal services for about 30-60 seconds before the connection stalls and i have to reconnect... this happened until i added my ip to the trusted zone, and turned off the firewall completely for the trusted zone.
So i go out searching for another software firewall... I have tried PortsLock, which i can't even get to lock down a simple port on my test box here at home... I've looked into other software, but they are all "personal firewalls," something i would like to get around if i can. ISA server is far too expensive, and I would think that it would require a server 2003 Standard Edition install anyway (my two options at this box are 2003 web and BSD - and for right now, i need a windows box). I looked into Symantec Enterprise Firewall, but their licensing information page has no information on that product *sigh*. I would try black ice, but i've heard bad things about that as well.
So to recap... i am looking for a software firewall that provides basic port locking, won't kick me out automatically when i install it (although i might be able to get around that using zonealarm during the install process), that not only runs on 2003 server web edition, but might actually be geared towards a server environment. I don't need anything that will help me administer client boxes in my environment.. just one box: a server.
Thank you so much in advance.