Posted on 2013-05-15
I am setting up a new web server that I rent remotely. It will run Lunux CentOS 64bit
Before I had a managed server with a managed Cisco pix firewall which was easy to use through their web interface.
Well, now I have 2 options which is to use a Dell SonicWall 215 or choose some software firewall. I do not have much experience on Software based firewalls and wonder if I could solicit for some advice from people that are experts on this area.
My questions are basically if it is really worth the considerable additional monthly costs for a hardware firewall and if there is a software firewall (preferably open source) that would do the same job reliable and securely. I do not have a complicated set-up as there are only a handful of users allowed to FTP to the machine and basically 2 users that can login using SSH and switch to root. Then of course the general public that visits websites and fetches/sends mail.
I will have a giga bit network but the Dell firewall is certified for 500 mbit, will this mean will it be an actual bottleneck? Also does a software based firewall have any performance issues.
What would be your recommendations, if the general opinion is that software firewalls are not secure and would open my door to attacks then I would have to cough up the extra monthly money but if there are software firewalls that are secure then of course I could save considerable.
If a software firewall then are there any recommendations?
I like to mention that I have 12 public IP addresses that need to managed and that it is a single server set-up. I do not have the budget to add a second server dedicated to a firewall. Seems that most software firewalls do not support multiple public IP's?