• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 201
  • Last Modified:

Open Source FW recommendation

Hi,

I am looking for an open source FW with IDS support built in. Will be installed on a Solaris 9 machine. Would be nice to have the options to add other modules (load balancing for example)- but not a must. The main criterion is that it should be recommended by actual users for-
1. Performance and reliability.
2. Ease if use.


Thank you
0
bobwood2000
Asked:
bobwood2000
  • 2
  • 2
1 Solution
 
Tim HolmanCommented:
iptables and snort.
0
 
bobwood2000Author Commented:
Are there any features that iptables does not have, which would be helpful for protecting a popular web server?
0
 
Tim HolmanCommented:
Not really.  I would also take a look at Smoothwall:

http://www.smoothwall.org/

It's more like an iptables 'GUI'.

To protect a web server, you need a firewall that blocks everything bar port 80, and statefully inspects the port 80 session.  ALL firewalls do this.

To extend your depth of protection, you'll need to add patch management, anti-virus and host IPS to ensure your web server remains protected.

For free, your enterprise options are limited.  You usually need to pay for stuff like load balancing.
0
 
bobwood2000Author Commented:
Problem solved. Thanks.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Increase Security & Decrease Risk with NSPM Tools

Analyst firm, Enterprise Management Associates (EMA) reveals significant benefits to enterprises when using Network Security Policy Management (NSPM) solutions, while organizations without, experienced issues including non standard security policies and failed cloud migrations

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now