Solved

Security setup for new dedicated server

Posted on 2004-10-06
1
127 Views
Last Modified: 2013-12-04
Hello all!  I am a web developer (which tells you how qualified I am to make decisions on security ;-) ) and  I am currently trying to ensure that my client's new dedicated server solution is properly secured.  They run a coldfusion 5.0 application.  They have their own email application.  The os will be windows 2003 with IIS.  It will be providing hosting for many different sites - all generated by that coldfusion application with some customization here and there.

We are hosting with rackspace and they are providing a Cisco PIX 501 firewall for the server.  My main question is whether or not we need or want a software firewall.  From what I read, software firewalls are a must in addition to the hardware.  But I am hearing from some of the security folks I have spoken with that a software firewall is not desirable for a server setup.   Can you help me clear up the confusion?  Thanks for your time!
0
Comment
Question by:JGoyer
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 25

Accepted Solution

by:
mikeleebrla earned 250 total points
ID: 12237759
I would have to say that you do not need a software firewall. A good hardware firewall such as Cisco will block all unwanted traffic so there isn't a need to have a software firewall.  Ive worked in Datacenters in the past and none of our clients ever used  software firewalls since they either used our hardware firewall or provided thier own.  In my opinion software firewalls are for home use to block traffic from entering your computer since most home users do not have a hardware firewall.  I personally have a hardware firewall set up at my home as well.  
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This is a guide to the following problem (not exclusive but here) on Windows: Users need our support and we supporters often use global administrative accounts to do this. Using these accounts safely is a real challenge. Any admin who takes se…
Security measures require Windows be logged in using Standard User login (not Administrator).  Yet, sometimes an application has to be run “As Administrator” from a Standard User login.  This paper describes how to create a shortcut icon to launch a…
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…
This is my first video review of Microsoft Bookings, I will be doing a part two with a bit more information, but wanted to get this out to you folks.
Suggested Courses

617 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question