Firewall and anti-virus software for coperate company

Posted on 2005-03-30
Medium Priority
Last Modified: 2013-11-16
I'm looking into upgrading our software. We're rather well behind the times in preventing hacking and having a good backup. I'm just looking for some software that would be good for a company our size. We have approx. 80PCs all XP Pro Workstations. We don't have any VPN yet, but am looking to getting one. Also we have a Point to Point network between here and another small health center we own, that has about 5 PCs on that network. I'm just looking for what is optimial for our company. I was thinking about a hardware firewall, but if a software firewall is just as effective i can settle with that. The only hardware firewall we have now is built into our cisco routers.
Question by:selhs
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
LVL 38

Expert Comment

by:Rich Rumble
ID: 13661688
For that many users hardware is the way to go. You do have a free alternitive if you can use Linux, it makes a great firewall with iptables. But  Pix 505e or something from cisco would also be good. There are also free AV's like Clam-Av, yet my recommendation is ultimatly McAfee. I like version 8.0i for workstations.
Linux is easy to setup, just select minimum for the software install, and allow it to partition the drives for you. You don't need anything very modern to have a good firewall (the pix for example is running a 333mhz proc at best) So perhaps a 500mhz or better, with 256meg or better. Then you need at least 2 nic's and your almost done.
Here is a brief guide on iptable setup: http://xinn.org/lin-newb-guide1.html

Clam-Av http://www.clamav.net/binary.html#pagestart (the windows version is down the page)

Accepted Solution

tmehmet earned 150 total points
ID: 13662059
Vendors are now doing firewall/AV in one appliance. As per richrumble, there are many with variations on the same theme, they should also be able to do your vpn stuff as well.

check out the following, they will have entry level devices for small office/branch office;


Also checkout McAfee, Symmantec, as well becuase they are also now doing firewall/AV appliances.

there are a few others, just search google.

Expert Comment

ID: 13664890
We use a custom linux os called Clark Connect.  If you're looking for a cheap/fast solution that easy to setup it's great!  We are running it on a P3 866 / 512mb ram (up 311 days, 17:28) with around 30-50 users behind it.

For more information please check out clarkconnect.com.
Need protection from advanced malware attacks?

Look no further than WatchGuard's Total Security Suite, providing defense in depth against today's most headlining attacks like Petya 2.0 and WannaCry. Keep your organization out of the news with protection from known and unknown threats.

LVL 16

Expert Comment

ID: 13666032
I have used PIX, Sonicwall, Watchguard, and Symantec and my recommendation goes to Watchguard.  I am so impressed by them that I just changed out all the Symantec appliances in the City I work for with Watchguard.

If you want to keep it cheap, put a Firebox X Edge X-50 unit at the main HQ and a X-5 unit at the remote site.  The X-50 with 1 year of maintenance is about $1000 and the X-5 with 1 year of maintenance is about $450.

These have all the built in IPSec VPN Tunnels to connect with each other and come with some mobile user VPN connections.  You can always buy more if you need them.

If you want more Umph at the main site, substitute the X-50 for say an X700.  This is capable of much more expansion and you can purchase Spam Screen, Gateway AntiVirus, etc for it and customize your rules to lock down exactly what you want.

For AntiVirus on the network, Symantec Corporate AntiVirus.  It is easy to setup and use and you can control and monitor everything from the server.
LVL 22

Expert Comment

ID: 13672084
If you are looking to upgrade/change, then this is your opportunity to significantly influence the corporate IT policy. All companies should have one, but very few companies have the ability to enforce a policy/check on useage effectively etc.

If you want an effective monitor/control of this type of useage, then I highly recommend Astaro (Free fro personal use, and well worth playing with - loads of add ons) :



Expert Comment

ID: 13673758
I would use the built in firewall for XP Sp2 (save some $) and buy Norton Corp addition 9.0 with the correct # of licenses. You will save $ in the long run instead of buying separated NAV for each machine.

Featured Post

Back Up Your Microsoft Windows Server®

Back up all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Getting to know the threat landscape in which DDoS has evolved, and making the right choice to get ourselves geared up to defend against  DDoS attacks effectively. Get the necessary preparation works done and focus on Doing the First Things Right.
What's worse than having your data encrypted by ransomware? Getting attacked by a so-called "wiper," which simply destroys the data and offers you no hope of ever seeing it again.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…
Suggested Courses
Course of the Month12 days, 22 hours left to enroll

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question