Firewall Question - Type of Firewall to Choose

FIrewall types
I have a company that does has many credit card x-actions.  CC's are swiped on the pc and through the software installed on the worksation (XP Pro SP2).  The end user then transmits all transactions through the program through the internet (Web based interface over port 443) to the transaction server that then records the transactions.
The workstation is part of a Wireless LAN.  Wireless is WEP encrypted, SSID is not broadcast.
The wireless access point is a Netgear wireless router connected to the DSL Modem.
My question is this.....is the Firewall functionality of the Netgear firewall/router sufficient to protect this LAN?  Or do i need more of a Cisco PIX firewall (VPN functionality is not a concern at this point).  Is there a certain type of firewall that is best other than the firewall functionality built in to the Netgear router?
LAN is for a medical facility that swipe many transactions and many very large sums of money so security is a major concern of their's.
Thanks
Greg
datzitAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

grbladesCommented:
The firewall should be fine but the wireless network is a serious vulnerability. WEP is very weak and can be broken in a matter of minutes. I would strongly suggest upgrading to WPA2.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
grbladesCommented:
As you are taking credit card information you should take a look at the PCI DSS standard. See https://www.pcisecuritystandards.org/tech/
0
datzitAuthor Commented:
Mistype on my part...i am using WPA2.
Based on this i should be ok with this setup?
Can you please confirm that?
Thanks.
Greg

0
grbladesCommented:
In general it should be ok. You need to go through the PCI standard though as it is very good and comprehensive and covers security in all areas. There are many areas like having antivirus and spyware detection running on each machine etc...
0
JSoupCommented:
Safe@Office 500W UTM Appliance
Safe@Office wireless solutions combine the best of security with the best of wireless. With an integrated wireless interface small businesses enjoy the advantages of wire-free networking without having to worry about the safety their networks. The wireless Safe@Office is a top-of-the-line Unified Threat Management security appliance that is simple to install and manage.
 
Benefits
 
 Integrated 802.11b/g secure access point
 
 Secure hotspots
 
 Industry-proven firewall
 
 Protection against worms and viruses
 
 Remote access VPN
 
 Web Filtering
 
 Quick setup & management
 
 Up-to-date protection
 
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Software Firewalls

From novice to tech pro — start learning today.