Solved

Firewall Recommendation

Posted on 2006-10-24
6
233 Views
Last Modified: 2013-11-16
Hi,

I work for a school that has roughly 1200 students and say 500 computers. We are having bandwidth issues and are about to purchase a net equalizer to help with this. However it will not do everything we need, we are wanting a firewall to use to do some basic things and price is a huge concern. Where I used to work we used a sonicwall and could view the most popular sites visited. This would allow us to have the kids tell us what the cool amazing new sites were and then we could block them. I am looking for an appliance that allows this at a cheaper cost.

Basically I want to be able to see the most visited sites/ip's and be able to block sites easily. I need an easy to use device that we will not have to mess with too much.


Thanks,
Chad
0
Comment
Question by:ItsChad
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 38

Expert Comment

by:Rich Rumble
ID: 17800788
Just about any firewall will do, Linux IPTables is a great firewall, and Linux supports "traffic shaping" which allows you to limit each machines connection throughput or a group of machines, an IP range etc... http://en.wikipedia.org/wiki/Traffic_shaping (QOS being enabled on the NIC of each PC is a must) The external links are great
Most enterprise routers can do traffic shaping, Cisco, Juniper, netgear etc...
Ntop can create the graphs and stats you desire, there is a Unix/Linux version and a win32 ported version
*nix: http://www.ntop.org/overview.html
win32: http://www.openxtra.co.uk/freestuff/ntop-xtra.php

I think ntop will provide you with more than you need, it doesn't write much to disk, so make sure you have lots o ram. Cisco pix's are great firewalls also, the 506e would likely suit your needs no problem. http://www.newegg.com/Product/Product.asp?Item=N82E16833120315
-rich
0
 

Author Comment

by:ItsChad
ID: 17800810
We have a pix501 however it says it has a 10 user license.....
0
 
LVL 38

Accepted Solution

by:
Rich Rumble earned 500 total points
ID: 17800845
Do all 500 pc's connect through the firewall currently? Is there some sort of NAT/PAT before the firewall allowing more than 10 ip's at a time?
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_data_sheet09186a0080091b18.html
10-User License
The Cisco PIX 501 10-user license supports up to 10 concurrent source IP addresses from your internal network to traverse through the Cisco PIX 501. The integrated DHCP server supports up to 32 DHCP leases. As your needs grow, both 50 user and unlimited user upgrade licenses are available, allowing you to extend your investment in Cisco PIX 501 equipment.
The 506e has: Concurrent connections: 25,000
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_data_sheet09186a0080091b13.html
-rich
0
Use Case: Protecting a Hybrid Cloud Infrastructure

Microsoft Azure is rapidly becoming the norm in dynamic IT environments. This document describes the challenges that organizations face when protecting data in a hybrid cloud IT environment and presents a use case to demonstrate how Acronis Backup protects all data.

 
LVL 38

Expert Comment

by:Rich Rumble
ID: 17800859
http://www.pricegrabber.com/search_getprod.php/masterid=923020/
7,500 max connections with the 501 "unlimited" license
-rich
0
 
LVL 4

Expert Comment

by:LBACIS
ID: 17807768
A Watchguard X700 will do exactly what you need.
0
 

Expert Comment

by:naveen_b81
ID: 17809824
if you have worked on linus, you can use Dansgaurdian with squid proxy server to restrict internet access. It is absolutely free of cost...
0

Featured Post

How Do You Stack Up Against Your Peers?

With today’s modern enterprise so dependent on digital infrastructures, the impact of major incidents has increased dramatically. Grab the report now to gain insight into how your organization ranks against your peers and learn best-in-class strategies to resolve incidents.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There's a lot of hype surrounding blockchain technology. Here's how it works and some of the novel ways it' s now being used - including for data protection.
Many old projects have bad code, but the budget doesn't exist to rewrite the codebase. You can update this code to be safer by introducing contemporary input validation, sanitation, and safer database queries.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question