Solved

Best and easiest firewall for Windows 2003 server

Posted on 2006-06-21
7
393 Views
Last Modified: 2013-11-16
Can anyone suggest a good and easy firewall for windows 2003 server? I bought Kerio WinRoute for one of my servers but I think it is a bit hard to administer, any other suggestions?
0
Comment
Question by:Steverino541
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
7 Comments
 

Author Comment

by:Steverino541
ID: 16949853
Maybe I should mention that I have this w2003 server set up with Routing and Remote Access. I have noticed in Windows XP that you can configure the windows firewall to only allow scertain ip's access to some ports but I can not understand how to do this in w2003 server when it is configured with routing and remote access. It says that it has the basic firewall enabled on my WAN interface and that I can set inbound or outbound filters. What I would like to do is block all packets to like port 8000 unless the packets are coming from example ip 83.83.83.83. Can I do this while not blocking anything else? It seems that I can not chose to set what packets to drop or receive, it is either one it seems.In the filter setting I can chose either "Receive all packets except those that meet the criteria below" or " Drop all packets except those that meet the criteria below". What I think I should do is Drop all packets to port 8000 except those that comes from ip 83.83.83.83, can I do that with this basic firewall?
0
 
LVL 51

Accepted Solution

by:
Keith Alabaster earned 500 total points
ID: 16954178
If you are open to options, I would get a reasonable router/firewall and let that administer the controls for you rather than doing this on a Windows server. Something like a small PIX unit allows for VPN's, has a web front-end if you like them or a command line interface if you don't, is best-of-breed for the price tag, gives you full control over the environment and you don't have to place around with things on the server.

Regards

keith
0
 

Author Comment

by:Steverino541
ID: 16957728
0
Retailers - Is your network secure?

With the prevalence of social media & networking tools, for retailers, reputation is critical. Have you considered the impact your network security could have in your customer's experience? Learn more in our Retail Security Resource Kit Today!

 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 16958980
Absolutely. The 501 is a great unit even though it is the entry unit. Many people now are also looking at the ASA55xx range from Cisco also as it is a vpn concentrator/firewall & god knows what else all in one. I use the 501 personally at home and it is brilliant.

I would suggest it would certainly meet your requirements. The other benefit of course is that there is ample support for Cisco eqyuipment on Experts-Exchange as well as many other places including Cisco's own web site.
0
 

Author Comment

by:Steverino541
ID: 16959010
Do you know anything about WATCHGUARD FIREBOX X15W as well?
0
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 16961718
No, sorry.

Cisco PIX, ISA, Checkpoint, Sidewinder and a little about Sonicwall's.
0
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 16979376
Thank you :)
0

Featured Post

Is your NGFW recommended by NSS Labs?

Ours is! NSS Labs Next Generation Firewall Test gives the WatchGuard Firebox M4600 a "Recommended" rating! Curious where your NGFW landed on the  Security Value Map? See the map and download the full report today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
This video Micro Tutorial shows how to password-protect PDF files with free software. Many software products can do this, such as Adobe Acrobat (but not Adobe Reader), Nuance PaperPort, and Nuance Power PDF, but they are not free products. This vide…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

687 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question