Solved

free firewall

Posted on 2014-02-02
14
126 Views
Last Modified: 2014-10-21
Dear Sir,
i have small office with 10 users and 4 serves and i need a free firewall to protect the users and servers.it would be prefer if the firewall have feature URL filtering.
how i could prevent the users from use the USB and DVD
0
Comment
Question by:shareef_yassin
  • 4
  • 4
  • 2
  • +2
14 Comments
 
LVL 17

Accepted Solution

by:
BudDurland earned 334 total points
Comment Utility
Smoothwall express: http://www.smoothwall.org
pfSense: http://pfsense.org

Both products turn an unused PC into a very capable firewall/proxy server.  Most of my clients used a machine that was otherwise under-powered for what the wanted to do.  Generally, the only update required was to add a second NIC.

For small offices, my preference is SmoothWall, as pfSense requires a bit more *nix savvy to really get the most out of it.
0
 
LVL 15

Expert Comment

by:The_Warlock
Comment Utility
Can you post a drawing or diagram that would illustrate what devices currently operate your LAN and ultimately connect you to the internet? Let us know and we will try to help you as best we can.
0
 
LVL 17

Assisted Solution

by:BudDurland
BudDurland earned 334 total points
Comment Utility
Firewalls will not prevent a user from accessing USB/DVD devices.  Usually, that functionality comes from group or domain user policies.  Google is your friend on this, but start here:

http://support.microsoft.com/kb/555324/en
http://www.petri.co.il/disable_usb_disks_with_gpo.htm
http://www.netwrix.com/usb_blocker_freeware.html
0
 
LVL 5

Expert Comment

by:piwowarc
Comment Utility
Hello

As suggested above, pfsense is a great robust choice. It supports squid with squidguard that will be able to filter any requests you wish. By default it downloads blacklists but user is free to configure his own.

Regards

Krzysztof
0
 
LVL 5

Assisted Solution

by:piwowarc
piwowarc earned 166 total points
Comment Utility
Apologies, did not read carefully. Thought you mentioned preventing from downloading DVDs. To block using DVD drive or USB you need either Group Policy (so AD) or something installed on user PCs.  In my company we use Data Loss Prevention from Symantec that enforces using only encrypted USB drives, but is not free unfortunately.

Look at Comodo software, this is only free solution I recollect with bigger capabilities than simple virus scanning.

Regards

Krzysztof
0
 

Author Comment

by:shareef_yassin
Comment Utility
dear Sir,
kindly find the topology attached.i need which firewall is stable and can controll the traffic of the users and i can make DMZ zone through it
ADSLtopology.jpg
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 17

Expert Comment

by:BudDurland
Comment Utility
> kindly find the topology attached.i need which firewall is stable and
>can controll the traffic of the users and i can make DMZ zone through it

Either of the free firewall programs previously mentioned will do this.  The firewall would go between the ADSL modem and the network switch.
0
 

Author Comment

by:shareef_yassin
Comment Utility
any more powerful free firewalls
0
 

Author Comment

by:shareef_yassin
Comment Utility
no problem if it depend on Linux OS and dont support URL filtering
0
 
LVL 17

Expert Comment

by:BudDurland
Comment Utility
> "any more powerful free firewalls "

I guess I'll need you to define "more powerful".  The two I listed are very good, with incoming and outgoing firewalls, Web proxy with filtering, anti-virus, port forwarding, DMZ capability, intrusion detection tools, and extensive logging.  So, what else do you need?
0
 

Author Comment

by:shareef_yassin
Comment Utility
incoming and outgoing firewalls, DMZ capability and optionally Web proxy with filtering
0
 
LVL 23

Expert Comment

by:Mohammed Hamada
Comment Utility
Shareef, you can use Pfsense!

It's the most secure firewall out there! it's based on FreeBSD and it doesn't need a lot of hardware resources.

It has all the capabilities you're asking for. please check my website for installation steps on Virtual machine e.g. (Virtual Box, HyperV or VMware)

http://www.moh10ly.com/blog/pfsense
0

Featured Post

Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

Join & Write a Comment

Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This tutorial demonstrates a quick way of adding group price to multiple Magento products.

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now