Recommendations on an internal firewall

Posted on 2005-04-12
Last Modified: 2013-11-16
Can anyone recommend a good firewall for internal network purposes or even the best practices on a Win2K server /Exchange2000/XP client network.

We've got a Cisco PIX to protect us from the outside but my concern are internal users running rogue programs or "pings" on their pcs.
Question by:mcnuttlaw
    LVL 5

    Accepted Solution

    If you have XP SP2 installed you can enforce some of the firewall settings using group policy.  That includes adding programs and scopes etc., we've used it to allow a program to run globallythat was normally blocked, but there is no reason why you cuoldn't use it in the opposite way.

    LVL 38

    Assisted Solution

    by:Rich Rumble
    ZoneAlarm. You can set it up so that when a user tries to use an approved program they are prompted for a password to allow this action, since they will not know the pass they will have to select cancel and the program will be terminated. A hardware firewall such as a pix cannot offer this sort of "leak" protection.
    Software firewalls offer the added bonus of Process locking/pausing/stopping. Well some do, some don't. ZA has a free version and a pay version, the free version is sort of ON or OFF when it comes to firewalling, but the process locking is almost as full featrued as the pay version. The pay version allows very precise control over acl (like a pix has) and even more control over process.

    ActiveDirectory is also able to control what programs can run on a PC.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    What Should I Do With This Threat Intelligence?

    Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

    Even if you have implemented a Mobile Device Management solution company wide, it is a good idea to make sure you are taking into account all of the major risks to your electronic protected health information (ePHI).
    This story has been written with permission from the scammed victim, a valued client of mine – identity protected by request.
    Sending a Secure fax is easy with eFax Corporate ( First, Just open a new email message.  In the To field, type your recipient's fax number You can even send a secure international fax — just include t…
    Excel styles will make formatting consistent and let you apply and change formatting faster. In this tutorial, you'll learn how to use Excel's built-in styles, how to modify styles, and how to create your own. You'll also learn how to use your custo…

    761 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    12 Experts available now in Live!

    Get 1:1 Help Now