stellamartois
asked on
Watchguard Firebox II, 700 or 1000
I have a Windows 2000 webserver located in a datacentre and I want to protect it with a watchguard firewall, why watchguard? Well, used items are available on ebay quite cheap and get they seem to get good reviews. However i just wanted to check with the experts:
I have 64 Public IP's on my server, most of my database driven sites are on a single IP address each but some of the very basic sites use a single IP and host headers.
I don't want to get into reconfiguring the server to use NAT and Port forwarding I just want to install the firebox appliance between the server and the gateway and block all Ports on all the public IP's and allow the following:
Win2KDNS PORT: 53(?)
HTTP PORT: 80
FTP PORT: 21
SMTP PORT: 25
POP3 PORT: 110
DANTZ RETROSPECT PORT: 497
PCAnywhere 10.0 PORTS: 5631 - 5632 (?)
Questions:
1. Is it easy to configure one of these things to do the above? And does anyone have any examples.
2. Does anyone have the software as far as i've read these things use proprietory software to configure them, most of the items i'm looking at on ebay have lost their CD's & Documentation, I called Watchguard but they wont let you download it unless you purchase a support contract which is a bit mean in my opinion.
3. Which item would be best suited to my needs, the II, 700 or 1000
regards,
martin
I have 64 Public IP's on my server, most of my database driven sites are on a single IP address each but some of the very basic sites use a single IP and host headers.
I don't want to get into reconfiguring the server to use NAT and Port forwarding I just want to install the firebox appliance between the server and the gateway and block all Ports on all the public IP's and allow the following:
Win2KDNS PORT: 53(?)
HTTP PORT: 80
FTP PORT: 21
SMTP PORT: 25
POP3 PORT: 110
DANTZ RETROSPECT PORT: 497
PCAnywhere 10.0 PORTS: 5631 - 5632 (?)
Questions:
1. Is it easy to configure one of these things to do the above? And does anyone have any examples.
2. Does anyone have the software as far as i've read these things use proprietory software to configure them, most of the items i'm looking at on ebay have lost their CD's & Documentation, I called Watchguard but they wont let you download it unless you purchase a support contract which is a bit mean in my opinion.
3. Which item would be best suited to my needs, the II, 700 or 1000
regards,
martin
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks for the advise i really appreciate it, i've emailed some further details to shahrial@hotmail.com regarding the appliance I intend to purchase.
I don't think I will be using the VPN capabilities, at least not yet, the appliance main function will be to act as a firewall for my co-located webserver. That said for future reference, it may be useful to ad a second firebox in my office to act as firewall for office internet traffic and box-box VPN to co-located webserver.
I will increase the points to 1000 if you can help me with points 1 & 2.
One other question i forgot to ask was do i need to do some sort of transfer of ownership if I buy a second hand appliance and is there a cost implication in this?, i noticed details on watchguards website regarding this but it was unclear. I called their US office but they left me on hold for 25 minutes before i finally gave up (no fun when calling from UK!)
That said, the reviews i've read seem great and lets face it, it looks cool too ;-)
again, thanks for any help you can offer,