Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

Hardware Firewall recommendation

Posted on 2004-10-04
12
Medium Priority
?
315 Views
Last Modified: 2013-11-16
We are setting up a backup web server (Windows 2000 web server with IIS) in a data center so we can implement a failover service. Can you guys recommend some low priced hardware firwalls from Linksys or other companies that work well. We will spend more money if we have to. I have heard about Cisco Pix firwall. I think all I need it for is to close all the ports except port 80 and 21. I would appreciate any thoughts and your experiences in this area.
0
Comment
Question by:zakali
  • 5
  • 3
  • 3
  • +1
12 Comments
 
LVL 79

Accepted Solution

by:
lrmoore earned 2000 total points
ID: 12220646
0
 

Author Comment

by:zakali
ID: 12220734
See the description below. What is 10 connections? Does that mean 10 connections through the IIS?

Cisco PIX Firewall - 501
REFURB PIX-501-BUN-K9 275
TT Part #: 943471
Item Description: Cisco PIX Firewall 501 - Firewall - 5 ports - 10 Connections - EN, Fast EN - refurbished
Item Status Description: Active
0
 
LVL 18

Expert Comment

by:JConchie
ID: 12220817
Sonicwalls....reliable, good value.
0
NEW Veeam Agent for Microsoft Windows

Backup and recover physical and cloud-based servers and workstations, as well as endpoint devices that belong to remote users. Avoid downtime and data loss quickly and easily for Windows-based physical or public cloud-based workloads!

 
LVL 79

Expert Comment

by:lrmoore
ID: 12221003
10 connections in that context most likely refers to 10 VPN connection peers at any one time.
There is a model with 10 user license, but that supports up to ten concurrent source IP addresses from your internal network to traverse through the PIX 501.
0
 
LVL 3

Expert Comment

by:oldhamuk
ID: 12251694
For a little extra you could consider the PIX 506e I have just install one for a customer. Although the PIX 501 is an excellent device it may not hold up if you have a heavly hit website and the 506e also comes with unlimited license as default.

I would also go with a Cisco PIX as first choice then either a Nokia or Netscreen but Nokia firewalls are very expensive and once you purchase the hardware you will need to purchase a CheckPoint license.

Any more question let me know.
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 13703155
How's it going? Have you found a solution? Do you need more information?
Can you close this question?

http://www.experts-exchange.com/help.jsp#hs5

Thanks for attending to this long-forgotten question.

<-8}
0
 

Author Comment

by:zakali
ID: 13703215
Thanks for the reminder. Sorry I didn't realize it was still open. What do you think about SonicWall TZ series?
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 13703284
I don't have any direct experience with them, but I think they run a linux kernel at the heart..
Sonic (Juniper now) web site/tech support leaves MUCH to be desired.
0
 
LVL 18

Expert Comment

by:JConchie
ID: 13707733
I do have a lot of experience with them and think fairly highly of them.

Irmoore.....What does "(Juniper now)" mean....
......Sonicwall is still Sonicwall.........website is fairly good, I think....tech support is average....first line is
sometimes knowledgeable, sometimes not.....but they bump you up to second line pretty quickly....and they are good.

Biggest plus for Sonicwall is the management gui....it's very user-friendly.....yet the control is very granular.....you can lock things down in
just the way you want without a lot of fuss.

Other plus is a very solid VPN....including a good, easily configured and maintained software VPN client for home user/road warrior access.
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 13707797
D'oh! I confused Sonicwall with Netscreen. Netscreen is now Juniper, NOT Sonicwall.
My sincere apologies for any confusion that may have caused anyone....

Like I said, no direct experience with them.... I'll go away now....

<8-}
0
 

Author Comment

by:zakali
ID: 13708021
JConchie, Thanks for your comments. I am sorry I can't award you any points (but I wish I could) because I already closed the question but I do appreciate it.

0
 
LVL 18

Expert Comment

by:JConchie
ID: 13708056
You can always post a link to this question in commnity support and ask to have the points split, if you feel my comments were of use ;-)
0

Featured Post

IT Degree with Certifications Included

Aspire to become a network administrator, network security analyst, or computer and information systems manager? Make the most of your experience as an IT professional by earning your B.S. in Network Operations and Security.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I recently attended Cisco Live! in Las Vegas, a conference that boasted over 28,000 techies in attendance, and a week of hands-on learning hosted by a solid partner with which Concerto goes to market.  Every year, Cisco displays cutting-edge technol…
For months I had no idea how to 'discover' the IP address of the other end of a link (without asking someone who knows), and it drove me batty. Think about it. You can't use Cisco Discovery Protocol (CDP) because it's not implemented on the ASAs.…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Suggested Courses
Course of the Month13 days, 11 hours left to enroll

580 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question