?
Solved

Smoothwall, ClarkConnect or home rolled firewall/proxy/VPN server ?

Posted on 2008-06-18
7
Medium Priority
?
562 Views
Last Modified: 2013-11-15
OK, as per thread title I am curious about your thoughts on Smoothwall v ClarkConnect.

At present we run a Smoothwall Corporate 3 server, primarily as a combined firewall and VPN server for 20 remote workers and one site-to-site link. It's a long time past its sell-by date, so I need to replace it.

I've been playing around with a Ubuntu Linux based-home rolled counterpart and I am happy with it to the point where I'd be prepared to roll it out - currently it can handle the firewall side of things with aplomb, the VPN tunnels and it can also do proxy/content filtering/logging and other nonsense.

Ordinarily I'd rather have a separate proxy/content filter in a box sitting behind the firewall, but in this case that won't be an option.

Trouble is, whatever solution I put in place I need to know that whoever follows along behind me can pick it up.

That leads me back to a commercially available GUI driven product a la Smoothwall or ClarkConnect - most of the lower end security appliances won't be as cost effective if we take the VPN tunnel requirements into account.

So, thoughts on the comparative merits or possible alternatives would be appreciated.
0
Comment
Question by:Copyleft
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
7 Comments
 
LVL 19

Accepted Solution

by:
bevhost earned 900 total points
ID: 21811304
It's been a really long time since I evaluated these, but at the time I decided to stick with SME Server from contibs.org,  which has a lot more features and doesn't require any licenses.
If by VPN you mean PPTP remote access rather than LAN to LAN IPSEC style then SME server is nice and easy to set up.  It will also operate as the email server and file server with public/private access controls for it's 'Information Bays'.  
See
http://wiki.contribs.org/SME_Server:Documentation:User_Manual:Chapter1#VPN_Access
0
 

Author Comment

by:Copyleft
ID: 21811315
Thanks for the input.

I should have explained that we are using L2TP/IPSEC, hence I went for a Ubuntu/DansGuardian/OpenSwan solution to play with.

Our site to site and remote worker tunnels are all L2TP/IPSEC and I don't want to change that.

I will take a closer look at SME Server - I played with an earlier version some time ago and was not too keen back then, but now...
0
 
LVL 19

Expert Comment

by:bevhost
ID: 21811419
Doesn't sound SME server is for you.
What is your motivation for wanting to change ?
0
Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

 

Author Comment

by:Copyleft
ID: 21811471
Smoothwall Corporate 3 is years old now and, although still capable in its own right, I'd like to implement proxy and content control, and inline AV scanning. Possibly even mail relay.

I'm happy enought o go to the latest Smoothwall 2008 (a jump of several versions) but the interface is different and network and other vital system settings are not directly available for export/import during an upgrade.

I figure if I have to start manually configuring a whole lot of stuff on a brand new box I should really look at which product it makes more sense to tinker with.

Smoothwall is currently a very strong contender with the additional modules to run the functions I'd like to have, but I'm open to alternatives.
0
 
LVL 10

Assisted Solution

by:Casey Herman
Casey Herman earned 600 total points
ID: 21811719
I have been pleased with CC. I have been running it for about 2 years and it is very stable.  Very maintenance free.  Using it for DNS, antivirus, and file storage at home.  Has a lot of features a good gui for non techies.

Casey
0
 

Author Closing Comment

by:Copyleft
ID: 31468262
Split the points according to how useful the comments were
0
 
LVL 19

Expert Comment

by:bevhost
ID: 22068470
0

Featured Post

WordPress Tutorial 1: Installation & Setup

WordPress is a very popular option for running your web site and can be used to get your content online quickly for the world to see. This guide will walk you through installing the WordPress server software and the initial setup process.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I've written this article to illustrate how we can implement a Dynamic Multipoint VPN (DMVPN) with both hub and spokes having a dynamically assigned non-broadcast multiple-access (NBMA) network IP (public IP). Here is the basic setup of DMVPN Pha…
If you use NetMotion Mobility on your PC and plan to upgrade to Windows 10, it may not work unless you take these steps.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…
Suggested Courses

765 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question