Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 196
  • Last Modified:

Open Source FW recommendation

Hi,

I am looking for an open source FW with IDS support built in. Will be installed on a Solaris 9 machine. Would be nice to have the options to add other modules (load balancing for example)- but not a must. The main criterion is that it should be recommended by actual users for-
1. Performance and reliability.
2. Ease if use.


Thank you
0
bobwood2000
Asked:
bobwood2000
  • 2
  • 2
1 Solution
 
Tim HolmanCommented:
iptables and snort.
0
 
bobwood2000Author Commented:
Are there any features that iptables does not have, which would be helpful for protecting a popular web server?
0
 
Tim HolmanCommented:
Not really.  I would also take a look at Smoothwall:

http://www.smoothwall.org/

It's more like an iptables 'GUI'.

To protect a web server, you need a firewall that blocks everything bar port 80, and statefully inspects the port 80 session.  ALL firewalls do this.

To extend your depth of protection, you'll need to add patch management, anti-virus and host IPS to ensure your web server remains protected.

For free, your enterprise options are limited.  You usually need to pay for stuff like load balancing.
0
 
bobwood2000Author Commented:
Problem solved. Thanks.
0

Featured Post

Managing Security Policy in a Changing Environment

The enterprise network environment is evolving rapidly as companies extend their physical data centers to embrace cloud computing and software-defined networking. This new reality means that the challenge of managing the security policy is much more dynamic and complex.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now