Solved

free firewall

Posted on 2014-02-02
14
130 Views
Last Modified: 2014-10-21
Dear Sir,
i have small office with 10 users and 4 serves and i need a free firewall to protect the users and servers.it would be prefer if the firewall have feature URL filtering.
how i could prevent the users from use the USB and DVD
0
Comment
Question by:shareef_yassin
  • 4
  • 4
  • 2
  • +2
14 Comments
 
LVL 17

Accepted Solution

by:
BudDurland earned 334 total points
ID: 39827713
Smoothwall express: http://www.smoothwall.org
pfSense: http://pfsense.org

Both products turn an unused PC into a very capable firewall/proxy server.  Most of my clients used a machine that was otherwise under-powered for what the wanted to do.  Generally, the only update required was to add a second NIC.

For small offices, my preference is SmoothWall, as pfSense requires a bit more *nix savvy to really get the most out of it.
0
 
LVL 15

Expert Comment

by:Robert Sutton Jr
ID: 39827714
Can you post a drawing or diagram that would illustrate what devices currently operate your LAN and ultimately connect you to the internet? Let us know and we will try to help you as best we can.
0
 
LVL 17

Assisted Solution

by:BudDurland
BudDurland earned 334 total points
ID: 39827720
Firewalls will not prevent a user from accessing USB/DVD devices.  Usually, that functionality comes from group or domain user policies.  Google is your friend on this, but start here:

http://support.microsoft.com/kb/555324/en
http://www.petri.co.il/disable_usb_disks_with_gpo.htm
http://www.netwrix.com/usb_blocker_freeware.html
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 5

Expert Comment

by:piwowarc
ID: 39827765
Hello

As suggested above, pfsense is a great robust choice. It supports squid with squidguard that will be able to filter any requests you wish. By default it downloads blacklists but user is free to configure his own.

Regards

Krzysztof
0
 
LVL 5

Assisted Solution

by:piwowarc
piwowarc earned 166 total points
ID: 39827771
Apologies, did not read carefully. Thought you mentioned preventing from downloading DVDs. To block using DVD drive or USB you need either Group Policy (so AD) or something installed on user PCs.  In my company we use Data Loss Prevention from Symantec that enforces using only encrypted USB drives, but is not free unfortunately.

Look at Comodo software, this is only free solution I recollect with bigger capabilities than simple virus scanning.

Regards

Krzysztof
0
 

Author Comment

by:shareef_yassin
ID: 39827780
dear Sir,
kindly find the topology attached.i need which firewall is stable and can controll the traffic of the users and i can make DMZ zone through it
ADSLtopology.jpg
0
 
LVL 17

Expert Comment

by:BudDurland
ID: 39827798
> kindly find the topology attached.i need which firewall is stable and
>can controll the traffic of the users and i can make DMZ zone through it

Either of the free firewall programs previously mentioned will do this.  The firewall would go between the ADSL modem and the network switch.
0
 

Author Comment

by:shareef_yassin
ID: 39829609
any more powerful free firewalls
0
 

Author Comment

by:shareef_yassin
ID: 39829634
no problem if it depend on Linux OS and dont support URL filtering
0
 
LVL 17

Expert Comment

by:BudDurland
ID: 39829742
> "any more powerful free firewalls "

I guess I'll need you to define "more powerful".  The two I listed are very good, with incoming and outgoing firewalls, Web proxy with filtering, anti-virus, port forwarding, DMZ capability, intrusion detection tools, and extensive logging.  So, what else do you need?
0
 

Author Comment

by:shareef_yassin
ID: 39829762
incoming and outgoing firewalls, DMZ capability and optionally Web proxy with filtering
0
 
LVL 24

Expert Comment

by:Mohammed Hamada
ID: 39936761
Shareef, you can use Pfsense!

It's the most secure firewall out there! it's based on FreeBSD and it doesn't need a lot of hardware resources.

It has all the capabilities you're asking for. please check my website for installation steps on Virtual machine e.g. (Virtual Box, HyperV or VMware)

http://www.moh10ly.com/blog/pfsense
0

Featured Post

Networking for the Cloud Era

Join Microsoft and Riverbed for a discussion and demonstration of enhancements to SteelConnect:
-One-click orchestration and cloud connectivity in Azure environments
-Tight integration of SD-WAN and WAN optimization capabilities
-Scalability and resiliency equal to a data center

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
Finds all prime numbers in a range requested and places them in a public primes() array. I've demostrated a template size of 30 (2 * 3 * 5) but larger templates can be built such 210  (2 * 3 * 5 * 7) or 2310  (2 * 3 * 5 * 7 * 11). The larger templa…

821 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question