Solved

Hardware Firewall recommendation

Posted on 2004-10-04
12
244 Views
Last Modified: 2013-11-16
We are setting up a backup web server (Windows 2000 web server with IIS) in a data center so we can implement a failover service. Can you guys recommend some low priced hardware firwalls from Linksys or other companies that work well. We will spend more money if we have to. I have heard about Cisco Pix firwall. I think all I need it for is to close all the ports except port 80 and 21. I would appreciate any thoughts and your experiences in this area.
0
Comment
Question by:zakali
  • 5
  • 3
  • 3
  • +1
12 Comments
 
LVL 79

Accepted Solution

by:
lrmoore earned 500 total points
Comment Utility
0
 

Author Comment

by:zakali
Comment Utility
See the description below. What is 10 connections? Does that mean 10 connections through the IIS?

Cisco PIX Firewall - 501
REFURB PIX-501-BUN-K9 275
TT Part #: 943471
Item Description: Cisco PIX Firewall 501 - Firewall - 5 ports - 10 Connections - EN, Fast EN - refurbished
Item Status Description: Active
0
 
LVL 18

Expert Comment

by:JConchie
Comment Utility
Sonicwalls....reliable, good value.
0
 
LVL 79

Expert Comment

by:lrmoore
Comment Utility
10 connections in that context most likely refers to 10 VPN connection peers at any one time.
There is a model with 10 user license, but that supports up to ten concurrent source IP addresses from your internal network to traverse through the PIX 501.
0
 
LVL 3

Expert Comment

by:oldhamuk
Comment Utility
For a little extra you could consider the PIX 506e I have just install one for a customer. Although the PIX 501 is an excellent device it may not hold up if you have a heavly hit website and the 506e also comes with unlimited license as default.

I would also go with a Cisco PIX as first choice then either a Nokia or Netscreen but Nokia firewalls are very expensive and once you purchase the hardware you will need to purchase a CheckPoint license.

Any more question let me know.
0
 
LVL 79

Expert Comment

by:lrmoore
Comment Utility
How's it going? Have you found a solution? Do you need more information?
Can you close this question?

http://www.experts-exchange.com/help.jsp#hs5

Thanks for attending to this long-forgotten question.

<-8}
0
6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

 

Author Comment

by:zakali
Comment Utility
Thanks for the reminder. Sorry I didn't realize it was still open. What do you think about SonicWall TZ series?
0
 
LVL 79

Expert Comment

by:lrmoore
Comment Utility
I don't have any direct experience with them, but I think they run a linux kernel at the heart..
Sonic (Juniper now) web site/tech support leaves MUCH to be desired.
0
 
LVL 18

Expert Comment

by:JConchie
Comment Utility
I do have a lot of experience with them and think fairly highly of them.

Irmoore.....What does "(Juniper now)" mean....
......Sonicwall is still Sonicwall.........website is fairly good, I think....tech support is average....first line is
sometimes knowledgeable, sometimes not.....but they bump you up to second line pretty quickly....and they are good.

Biggest plus for Sonicwall is the management gui....it's very user-friendly.....yet the control is very granular.....you can lock things down in
just the way you want without a lot of fuss.

Other plus is a very solid VPN....including a good, easily configured and maintained software VPN client for home user/road warrior access.
0
 
LVL 79

Expert Comment

by:lrmoore
Comment Utility
D'oh! I confused Sonicwall with Netscreen. Netscreen is now Juniper, NOT Sonicwall.
My sincere apologies for any confusion that may have caused anyone....

Like I said, no direct experience with them.... I'll go away now....

<8-}
0
 

Author Comment

by:zakali
Comment Utility
JConchie, Thanks for your comments. I am sorry I can't award you any points (but I wish I could) because I already closed the question but I do appreciate it.

0
 
LVL 18

Expert Comment

by:JConchie
Comment Utility
You can always post a link to this question in commnity support and ask to have the points split, if you feel my comments were of use ;-)
0

Featured Post

What Is Threat Intelligence?

Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

Join & Write a Comment

If you are like regular user of computer nowadays, a good bet that your home computer is on right now, all exposed to world of Internet to be exploited by somebody you do not know and you never will. Internet security issues has been getting worse d…
When I upgraded my ASA 8.2 to 8.3, I realized that my nonat statement was failing!   The log showed the following error:     %ASA-5-305013: Asymmetric NAT rules matched for forward and reverse flows It was caused by the config upgrade, because t…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now