-
Jared_c, if you haven't thought about it already, here is something to consider. If you are running multiple servers, ie web, ftp, etc, etc, you may want to look at purchasing a hardware appliance firewall. I'm not sure if you are hosting web servers for others or what your situation is, but I would definitely consider looking into a firewall appliance. My personal experience with WatchGuard Technologies, http://www.watchguard.com , has been very pleasing. For your situation, I'd recommend their Firebox SOHO: http://www.watchguard.com/products/fireboxsoho.asp
It's a Small Office, Home Office firewall. Watchguard provides pretty good support with their Live Security service, and as I stated earlier, my experience with them has been excellent. If you have the financial resources, this may be an option you will want to consider to better protect your network.
Just some thoughts...
-
Maverick.. That looks like the type of firewall I have been looking for....
The way my setup is:
DSL Modem -> Hub -> Servers plugged into hub. The servers use the IP Addresses that are assigned to us by the DSL provider.
Would this firewall appliance work if I plugged it directly into the DSL Modem, and then the hub into the firewall? The other firewalls I found were built into routers that required me to have the servers use internal IP Addressing (192.168.1.x).
Would this firewall allow me to use it with my current setup without having to use internal IP Addressing? That would be excellent.
Thanks for the info.
-
Quote:
Originally posted here by jared_c
Maverick.. That looks like the type of firewall I have been looking for....
The way my setup is:
DSL Modem -> Hub -> Servers plugged into hub. The servers use the IP Addresses that are assigned to us by the DSL provider.
Would this firewall appliance work if I plugged it directly into the DSL Modem, and then the hub into the firewall? The other firewalls I found were built into routers that required me to have the servers use internal IP Addressing (192.168.1.x).
Would this firewall allow me to use it with my current setup without having to use internal IP Addressing? That would be excellent.
Thanks for the info.
Jared_c,
So you are purchasing IP addresses from your ISP, all of which get assigned to your DSL modem?
I'm not sure if you could do this without internal IP addresses or not, but here's what you could do - now I haven't personally used the SOHO (I've been using one the larger scale appliances from their Firebox series of appliances), but I'm pretty sure it would work the same. Using the SOHO, you may have to let your network be assigned internal IP addresses, but you can use reverse NAT on the SOHO to ensure that packets are sent to the right server. You can from within the Firebox setup designate how incoming traffic is handled. (Again, this is how I've used it with the larger scale Fireboxes, but it should work the same for the SOHO). For example, you can setup an incoming service, say HTTP for example. If Server A responds to traffic designated for IP address X, and Server B responds to traffic designated for IP address Y, and Server C responds to traffic designated for IP address Z, on the incoming HTTP service you setup, you direct incoming traffic to the respective machine. All traffic with a destination IP address of X is routed through the SOHO to Server A, all traffic with a destination IP address of Y is routed to Server B, and so on. I've done this in the past and it works great. You can set up FTP services, HTTP services, all kinds of different things. I've found the appliances really easy to use, but very powerful.
It may be worth checking with Watchguard Technologies to confirm this for use with the SOHO, but I know it has worked for me.
If anybody here is using a SOHO and can confirm my response or answer Jared_c's question, I would appreciate it.
Jared_c, feel free to post here or PM me if you have any more questions. I'd be happy to help...
