To follow up with SirDice's post... I would avoid having anything except the game software and necessary system components on the server. Any added components are going to make it more exploitable. Checkpoint and PIX both have excellent filtering capabilities, and are highly configurable and scalable. Although, they are very expensive. If you cannot afford a solution like that, my advice would be to set up a dedicated gateway using Linux and IPTables.Originally Posted by ngboot
EDIT: Snort maybe? Some IDS functionality?