Solved

free firewall

Posted on 2014-02-02
14
131 Views
Last Modified: 2014-10-21
Dear Sir,
i have small office with 10 users and 4 serves and i need a free firewall to protect the users and servers.it would be prefer if the firewall have feature URL filtering.
how i could prevent the users from use the USB and DVD
0
Comment
Question by:shareef_yassin
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 4
  • 2
  • +2
14 Comments
 
LVL 17

Accepted Solution

by:
BudDurland earned 334 total points
ID: 39827713
Smoothwall express: http://www.smoothwall.org
pfSense: http://pfsense.org

Both products turn an unused PC into a very capable firewall/proxy server.  Most of my clients used a machine that was otherwise under-powered for what the wanted to do.  Generally, the only update required was to add a second NIC.

For small offices, my preference is SmoothWall, as pfSense requires a bit more *nix savvy to really get the most out of it.
0
 
LVL 15

Expert Comment

by:Robert Sutton Jr
ID: 39827714
Can you post a drawing or diagram that would illustrate what devices currently operate your LAN and ultimately connect you to the internet? Let us know and we will try to help you as best we can.
0
 
LVL 17

Assisted Solution

by:BudDurland
BudDurland earned 334 total points
ID: 39827720
Firewalls will not prevent a user from accessing USB/DVD devices.  Usually, that functionality comes from group or domain user policies.  Google is your friend on this, but start here:

http://support.microsoft.com/kb/555324/en
http://www.petri.co.il/disable_usb_disks_with_gpo.htm
http://www.netwrix.com/usb_blocker_freeware.html
0
Defend Your Organization from The Greatest Threats

Looking to fill the gaps in your security? Bring together information from the network, endpoint and threat intelligence feeds to really see what's happening in your organization. Join the WatchGuardians in their adventures fighting cyber crime!

 
LVL 5

Expert Comment

by:piwowarc
ID: 39827765
Hello

As suggested above, pfsense is a great robust choice. It supports squid with squidguard that will be able to filter any requests you wish. By default it downloads blacklists but user is free to configure his own.

Regards

Krzysztof
0
 
LVL 5

Assisted Solution

by:piwowarc
piwowarc earned 166 total points
ID: 39827771
Apologies, did not read carefully. Thought you mentioned preventing from downloading DVDs. To block using DVD drive or USB you need either Group Policy (so AD) or something installed on user PCs.  In my company we use Data Loss Prevention from Symantec that enforces using only encrypted USB drives, but is not free unfortunately.

Look at Comodo software, this is only free solution I recollect with bigger capabilities than simple virus scanning.

Regards

Krzysztof
0
 

Author Comment

by:shareef_yassin
ID: 39827780
dear Sir,
kindly find the topology attached.i need which firewall is stable and can controll the traffic of the users and i can make DMZ zone through it
ADSLtopology.jpg
0
 
LVL 17

Expert Comment

by:BudDurland
ID: 39827798
> kindly find the topology attached.i need which firewall is stable and
>can controll the traffic of the users and i can make DMZ zone through it

Either of the free firewall programs previously mentioned will do this.  The firewall would go between the ADSL modem and the network switch.
0
 

Author Comment

by:shareef_yassin
ID: 39829609
any more powerful free firewalls
0
 

Author Comment

by:shareef_yassin
ID: 39829634
no problem if it depend on Linux OS and dont support URL filtering
0
 
LVL 17

Expert Comment

by:BudDurland
ID: 39829742
> "any more powerful free firewalls "

I guess I'll need you to define "more powerful".  The two I listed are very good, with incoming and outgoing firewalls, Web proxy with filtering, anti-virus, port forwarding, DMZ capability, intrusion detection tools, and extensive logging.  So, what else do you need?
0
 

Author Comment

by:shareef_yassin
ID: 39829762
incoming and outgoing firewalls, DMZ capability and optionally Web proxy with filtering
0
 
LVL 24

Expert Comment

by:Mohammed Hamada
ID: 39936761
Shareef, you can use Pfsense!

It's the most secure firewall out there! it's based on FreeBSD and it doesn't need a lot of hardware resources.

It has all the capabilities you're asking for. please check my website for installation steps on Virtual machine e.g. (Virtual Box, HyperV or VMware)

http://www.moh10ly.com/blog/pfsense
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

If you are like regular user of computer nowadays, a good bet that your home computer is on right now, all exposed to world of Internet to be exploited by somebody you do not know and you never will. Internet security issues has been getting worse d…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question