?
Solved

What kind of firewall for a new Windows Server 2003 SBE

Posted on 2005-03-12
3
Medium Priority
?
309 Views
Last Modified: 2013-11-16
I am installing my first server in the guise of a Windows Server 2003 SBE machine from Dell.  The setup is for a Doctors office, so security is imporant, since the server will have patient files.  Most of my experience is with workstations, so I had a few questions:

1.  Would you suggest I get the Premium version of Server 2003 SBE that includes ISA or is there another 3rd party firewall software that would work equally as well (I had been looking at Symantec Client Security for a combined Anti-Virus/Firewall Solution).
2.  Do the various software firewalls (ISA, Symantec, Zone Alarm, etc) work on the actual server as well, or does the OS come with enough built in security to lock itself down.
3.  I am trying to figure out what kind of a hardware router/firewall to use.  Any suggestions.  I need something affordarle for about five machines.  Am I ok with one of the less expensive business Linksys or Netgear's or should I be looking into somehting with client liscenses (Syamtec box for example.)


Thanks,
0
Comment
Question by:dhollander
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 79

Accepted Solution

by:
lrmoore earned 2000 total points
ID: 13525574
Personal opinion - Microsoft took ISA out of SBS for a reason. It's simply not a good idea.
The best approach is a hardware appliance firewall - always.
Here's some help with low-end firewalls..


Good article on choosing the best firewall for you:
http://www.sans.org/rr/whitepapers/firewalls/951.php


Good solid product that does a lot. The Linksys QuickVPN client is cool.
Linksys RV082:
http://www.linksys.com/products/product.asp?prid=589&scid=29

Lots of awards in the press for being a multi-function product, but I don't like all my eggs in one basket and I've heard that they are a real bear to get configured and maintain
Fortinet:
http://www.fortinet.com/news/pr/2004/pr102504.html
http://www.fortinet.com/products/telesoho.html

Lots of good press and experts here at EE like these products:
SonicWall
http://www.sonicwall.com/

Adtran is fairly new in the arena, but the products are solid, and the support is good (if you can live without 24x7 support)
Adtran Netvanta
https://www.adtran.com/adtranpx/Rooms/DisplayPages/LayoutInitial?Product=com.webridge.entity.Entity%5BOID%5B27100B71B4B3E44D84DCAE487414CD69%5D%5D&Container=com.webridge.entity.Entity%5BOID%5B54C70AA0A26ED711A78500D0B72032D8%5D%5D&ProductCategory=com.webridge.entity.Entity%5BOID%5BCB5C5CB7C4419B4AA04F9CE1AEDD8CE7%5D%5D

Netscreen has been bought out by Juniper Networks. Our corporate Network guys use Netscreen and are looking for a replacement (NOT a Netscreen)
Netscreen, but I have clients that swear by them...
http://www.juniper.net/products/glance/nscn_5.html

Rock-solid product with good support:
Watchguard Firebox
http://www.watchguard.com/products/

PIX 501 - My favorite. Most reliable and versitile (IMHO)
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/ps2031/index.html

I would put this product way down in my list unless budget was all I could afford:
D-LINK w/DMZ port
http://www.dlink.com/products/?pid=66

All of Symantec's products are rock solid:
Symantec:
http://www.symantec.com/smallbiz/gtw/
0
 
LVL 3

Author Comment

by:dhollander
ID: 13526383
If I were to go with the Linksys Linksys RV082, do you think I would also need to have a local software firewall installed on the machines as well?
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 13526440
I wouldn't say that you HAVE to have one, but it woudn't hurt. I know that Windows 2003 Server comes with basically the same firewall as XP SP2, but I'm not 100% sure that the SB edition has it, too. If so, I believe that would be all you need with any external firewall.
0

Featured Post

New feature and membership benefit!

New feature! Upgrade and increase expert visibility of your issues with Priority Questions.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
If you are like regular user of computer nowadays, a good bet that your home computer is on right now, all exposed to world of Internet to be exploited by somebody you do not know and you never will. Internet security issues has been getting worse d…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
Visualize your data even better in Access queries. Given a date and a value, this lesson shows how to compare that value with the previous value, calculate the difference, and display a circle if the value is the same, an up triangle if it increased…
Suggested Courses

765 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question