replacing a firewall/vpn router

I currently have a D-Link DFL-300 and have been extremely happy with it with the exception of two factors:

1) I cannot find a way to successfully manage or secure port 25, because of this some companies are blacklisting my email domain.

2) Internet traffic, at times, completely stalls and connectivity drops for a minute at a time.

Our users can't conduct business this way so it's time to replace the router I believe. Does anyone have advice on a small - medium sized business firewall and VPN router? I have about 25 clients local, and about 5 road warriors. I need something that is stable, configurable, not too difficult to train others on for support backup and has excellent log reporting.

This is a very time sensitive need, hence the high points.
Randy ColeDigital Marketing, Marketing Director, Market Manager, IT DirectorAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

noctotCommented:
 I doubt you need a new router.
   Could you provide more information on your situation with managing port 25? Are you getting reports from blacklists that you are sending out spam or that you may have open relays? Those are both common reasons for blacklisting and have nothing to do with your router. In fact, very few e-mail abuse issues are best handled by router configurations.
   As far as the Internet traffic dropping, that may be a router problem but you've got a lot of troubleshooting to do first. The first step is to isolate. If your router connects to a modem you'll want to check out it's connection when the service drops. When it is working normally make a note of the color and state (like solid or blinking) of all of its status lights. When you experience the problem check the modem again and compare. If you see any lights labeled something like PWR or SYNC go red then the problem is with your WAN connection or modem. If your router has a built-in modem the same applies. If you see a problem with the status lights call your ISP. If you think your modem or the WAN side of your router is good then you need to ping test.
   Run IPCONFIG /ALL from a DOS prompt and find out your IP address, your default gateway and your DNS servers. The next time the Internet drops ping your gateway and, if successful, ping your DNS servers. You'll have to be quick if it only drops very briefly. The gateway for your PCs should be the router itself so if pings to the gateway drop replace the cabling to the router as see if that helps. If you can ping the router (gateway) but not the DNS servers then the router might be dropping the connection even if you can't tell that by the status lights. Again, call your ISP.
   After that, troubleshooting it gets complicated. Your ISP might be able to assist you if they are cool. Otherwise you would need to hire a LAN tech but it is really hard to find a good one. Ask fellow business owners for recommendations.

   If you'd rather I just shut up and answer your question I'd suggest a Linksys RV042 or a Netopia 3386.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
pseudocyberCommented:
I've heard really good things about Sonicwall.  They seem fairly easy to operate.  Check out this Sonicwall VPN 200 - which can support SSL VPN for up to 50 users.

http://www.sonicwall.com/products/ssl-vpn200.html
0
lrmooreCommented:
Probably more than you want to spend for 25 users, but I like the Cisco PIX 506 or the ASA5510. Can't beat the "fixup" smtp mail guard, but it depends on your mail server. Keeping your mail server off the black lists is more a function of how you set up the server, not the firewall in front of it.
0
Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

pseudocyberCommented:
lr, how much are those?  I just did a quick google price check and saw a price of around $700 for the SW vpn 200.
0
lrmooreCommented:
Refurb 506E around $895
New ASA 5510 $2500
http://www.cdw.com/shop/products/default.aspx?EDC=792590

For 25 users is $100 per user too much to spend for the best if they're losing productivity at $2500/hour in lost time?


0
pseudocyberCommented:
Not for me ... but it might be to some Manager types ... ;)
0
lrmooreCommented:
Yeah, I know it's hard to squeeze $ out of the bean counters. Most of them simply cannot see the bigger picture.

> Internet traffic, at times, completely stalls and connectivity drops for a minute at a time.
This could be a side affect of something else thats happening, not just the quality of your firewall. To get visibility on what is happening on the LAN, you need something like Ethereal or NTOP  http://www.ntop.org
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Routers

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.