Avatar of Julian Haines
Julian HainesFlag for United Kingdom of Great Britain and Northern Ireland

asked on 

Home firewall recommendations

Hi,

I am having issues with external hackers trying to access my external 2012 R2 server, I have it open for RDP only and just recently keep seeing failed logon attempts with random usernames and passwords.

I am looking for a way of blocking all external IP's for accessing RDP apart from my own IP, I have tried with the Windows firewall but for some reason this is not working very well so was thinking of a hardware firewall?

I use SonicWall's for work and this may also be good to secure other devices on the network as well as I can force all traffic though it but this is not the main objective.

I looked at SonicWall TZ-210 devices and you can pick one up for £40 but I think I will have to buy a license which is expensive and I dont want to spend out too much.

Does anyone have any suggestions?
Hardware FirewallsNetworkingNetwork SecuritySecurity

Avatar of undefined
Last Comment
Arkel Thompson
Avatar of John
John
Flag of Canada image

You need to secure it with VPN for secure access. That is what I do for my home office systems. So you need a VPN router to do this. More than 40 quid when you are done.
Avatar of masnrock
masnrock
Flag of United States of America image

1) Avoid having any public facing server lack firewall protections if you don't have to do this. (I know this is exactly what you're looking to do, but putting in a reminder)
2) Even with a firewall, people are still going to try the exact same things. However, without a firewall, the attack surface area is much larger.
3) Make sure to disable unneeded bits, and to make passwords complex.
4) If you're trying to keep it low budget, you could try Untangle's free version. You would need a computer that has at least 2 NIC cards (no need for an OS as Untangle will address that). You'd get NG Firewall.

Creating a VPN would be a far more secure approach than what you have now as John has mentioned. However, you still should get an actual firewall into play first. Untangle also includes OpenVPN. Going the VPN route would prevent you from having to open firewall ports beyond what is necessary for VPN.
Avatar of Tom Cieslik
Tom Cieslik
Flag of United States of America image

TZ-210 is a good firewall, maybe TZ-215 is better with similar price
You don;t need to buy any licenses to use firewall if you don't want to use additional features like virus and spam screening
I second Masnrock suggestion of using Untangle for use as Firewall and VPN option which also included in Untangle. You can check the intrusion prevention module in Untangle for added security, just make sure the machine you're using as the appliance has more than 2GB of memory.
Avatar of Dirk Kotte
Dirk Kotte
Flag of Germany image

you can try sophos UTM home edition too.
License is free for home use (and limited to 50 IP's)
nearly all UTM features are available.
You can use RAS-VPN and restrict RDP access to your own IP.
Avatar of Shaun Vermaak
Shaun Vermaak
Flag of Australia image

Please post you Windows Firewall settings.

You can also use RDPGuard
https://rdpguard.com/
ASKER CERTIFIED SOLUTION
Avatar of Natty Greg
Natty Greg
Flag of Canada image

Blurred text
THIS SOLUTION IS ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
Avatar of Julian Haines
Julian Haines
Flag of United Kingdom of Great Britain and Northern Ireland image

ASKER

Going to try this on an old PC
Just would like to add that Untangle has a home license that contains all of the paid applications. You can pay $5 a month or $50 for the year.
Avatar of Natty Greg
Natty Greg
Flag of Canada image

There are two reason I didn't recommend untangle maybe three
1.Home user has to pay for it, if for business then it a right off and that's ok
2.Untangle has become a resource hog, and you must use better to best hardware to harness its power so having your lowly computer hanging around with sub-par hardware will not cut it.
3.I'm pissed because they used an opensource platform, let us do the beta testing in the early phase, then turn around and sell us free software
I understand your pain, but you have the option to use it for free, but with limits. Depending on the environment, usage and connected devices the free solution can work. Concerning the hog on resources, you can configure it to suit your hardware and use what's only needed. I heard that the current version contains a mix of open source and commercial technology. For a product or service to become better, money is needed, free things also come with a cost often times not apparent.
Networking
Networking

Networking is the process of connecting computing devices, peripherals and terminals together through a system that uses wiring, cabling or radio waves that enable their users to communicate, share information and interact over distances. Often associated are issues regarding operating systems, hardware and equipment, cloud and virtual networking, protocols, architecture, storage and management.

102K
Questions
--
Followers
--
Top Experts
Get a personalized solution from industry experts
Ask the experts
Read over 600 more reviews

TRUSTED BY

IBM logoIntel logoMicrosoft logoUbisoft logoSAP logo
Qualcomm logoCitrix Systems logoWorkday logoErnst & Young logo
High performer badgeUsers love us badge
LinkedIn logoFacebook logoX logoInstagram logoTikTok logoYouTube logo