October 8th, 2007 06:18 PM
To follow up with SirDice's post... I would avoid having anything except the game software and necessary system components on the server. Any added components are going to make it more exploitable. Checkpoint and PIX both have excellent filtering capabilities, and are highly configurable and scalable. Although, they are very expensive. If you cannot afford a solution like that, my advice would be to set up a dedicated gateway using Linux and IPTables.
Originally Posted by ngboot
EDIT: Snort maybe? Some IDS functionality?
Real security doesn't come with an installer.
October 9th, 2007 12:26 AM
In the corporate environment I recommend a Cisco ASA, a NetScreen, or Checkpoint on Nokia. I would never ever ever run any software firewall on a windows platform in a corporate environment.
October 12th, 2007 04:00 PM
For our generic project we're gonna use one of the 500 series Cisco pix models.
October 13th, 2007 12:06 AM
As SireDice said, if you want corporate level, your going to be going with Cisco Pix, Checkpoint, sonicwall, Juniper...etc etc.
IPtables would be effective...another alternative would be one I use on my linux servers that I also do some game hosting on. That would be.
APF basically lets you till it what ports you want open, and it closes the rest. Simple yet effective. It also lets you specify ports before you start the service which is nice. Especially if you configure the servers remotely like I do. Lets you not lock yourself out
Bah..didn't see the second page.
I've worked with the Pix 535 before. Good firewall.
Last edited by cheyenne1212; October 13th, 2007 at 12:08 AM.
October 13th, 2007 02:06 AM
Well, I have never been in a corporate office till now (save those where I am a CUSTOMER!) but still, I would ask a question:
Some of the experts I see here do rely on Hardware firewalls more than the software firewalls on ANY Operating System. That might be true. But does't that mean that they are not upgradable?
"Everything should be made as simple as possible, but not simpler."
- Albert Einstein
October 13th, 2007 03:30 AM
Doesn't that mean that the hardware firewalls aren't upgradeable?
Usually the way the hardware firewalls work, is you buy the appliance itself, along with a certain feature set which you must purchase the license for. Generally, you can buy another license to unlock features on your appliance which may have been previously unavailable to you.
October 17th, 2007 09:02 AM
How about pfSense or M0n0wall on a net45xx/net48xx/net55xx/WRAP,
it's a good alternative if you like a firewall for reasonable amount of money.
October 18th, 2007 08:52 PM
XP - comodo firewall, mate passed the GRC leak test and various other tests, still cant trust software firewalls in my opinion but its the best one for XP iv found
October 20th, 2007 08:31 PM
March 27th, 2013 11:07 AM
I use the best Comodo firewall, it is the award winning personal firewall software on Internet..