Whar is your best firewall you use?
Printable View
Whar is your best firewall you use?
Well Mate it really depends on a multitude of variables. Like: what you are trying to protect, how much money do you want to spend, what operating system you have, do you want a software firewall or a dedicated appliance, etc...
Determine those first and then let us know so we can help you.
cheers
Relyt, you being modest, or what ?
Start here :
http://www.antionline.com/showthread...hreadid=270341
Firewall Recommendations
Actually it was directly below this thread for awhile!...lol
What firewall would you recommend?
Firewall Recommendations - Number Six!
But none-the-less, he does need to provide a little more info. If I say, "You can't beat PIX" and he sees the price tag :eek: Especially if he just wanted a free Windows compatible. :D
cheers
I agree...need more info to make a more intelligent post. I'll go ahead and put in my 2 cents, though.
For reliability and flexability in the enterprise, it's PIX, hands down, but it's pricey.
For ease of use in an enterprise appliance, I recommend SonicWall.
For home use, if you want an appliance or router, go with WatchGuard's Firebox SOHO (if you can afford the price), or go with a Linksys router.
As far as host based, for Win2k or 2k3, I'd go with Checkpoint. For XP, I like Sygate.
I do not have enough expertise or experience with linux firewalls, other than ipchains, to make an informed recommendation here.
Just my 2 cents.
What good is a suggestion without reason?
Seriously... most of these people couldn't quantify the differences between Zone Alarm and PIX beyond "uh, one is hardware (sic) firewall?"
cheers,
catch
Hardware Firewall or Firestarter.Quote:
I can't believe you got positive points for "hardware firewall"? What a sad state of affairs.
cheers,
catch
Can I borrow this thread, sir? To save postage.... and to further expound upon this inquiry. I'll be commandeering this thread so what I ask now, is assistance. I am presenting the same question. Only I wish to install a corporate level firewall, on a mock- online game network. Pure generics. None the less, this trial is project status.. so I need to know the best firewall one would recommend for a Linux server hosting an online game. Is it really IPtables..?
Corporate level firewall would be PIX or Checkpoint.. Both very expensive...
To follow up with SirDice's post... I would avoid having anything except the game software and necessary system components on the server. Any added components are going to make it more exploitable. Checkpoint and PIX both have excellent filtering capabilities, and are highly configurable and scalable. Although, they are very expensive. If you cannot afford a solution like that, my advice would be to set up a dedicated gateway using Linux and IPTables.Quote:
Originally Posted by ngboot
EDIT: Snort maybe? Some IDS functionality?
In the corporate environment I recommend a Cisco ASA, a NetScreen, or Checkpoint on Nokia. I would never ever ever run any software firewall on a windows platform in a corporate environment.
For our generic project we're gonna use one of the 500 series Cisco pix models.
As SireDice said, if you want corporate level, your going to be going with Cisco Pix, Checkpoint, sonicwall, Juniper...etc etc.
IPtables would be effective...another alternative would be one I use on my linux servers that I also do some game hosting on. That would be.
APF
http://rfxnetworks.com/apf.php
APF basically lets you till it what ports you want open, and it closes the rest. Simple yet effective. It also lets you specify ports before you start the service which is nice. Especially if you configure the servers remotely like I do. Lets you not lock yourself out :)
**EDIT**
Bah..didn't see the second page.
I've worked with the Pix 535 before. Good firewall.
Well, I have never been in a corporate office till now (save those where I am a CUSTOMER!) but still, I would ask a question:
Some of the experts I see here do rely on Hardware firewalls more than the software firewalls on ANY Operating System. That might be true. But does't that mean that they are not upgradable?
Doesn't that mean that the hardware firewalls aren't upgradeable?
Depends.
Usually the way the hardware firewalls work, is you buy the appliance itself, along with a certain feature set which you must purchase the license for. Generally, you can buy another license to unlock features on your appliance which may have been previously unavailable to you.
How about pfSense or M0n0wall on a net45xx/net48xx/net55xx/WRAP,
it's a good alternative if you like a firewall for reasonable amount of money. :)
http://www.soekris.com/net5501.htm
http://www.pfsense.org/
http://m0n0.ch/wall/
XP - comodo firewall, mate passed the GRC leak test and various other tests, still cant trust software firewalls in my opinion but its the best one for XP iv found
These questions still popping up...;)
Define the need (and what services you are willing/need to put on the line - can't hide every thing), make the type selection based on what will support those needs, and of course what you can afford. Its only one part of a layered defense, yadi, yadi, yadi
None of it means squat if everything is not configured appropriately and updated...
"...passed the GRC leak test...." :p Don't think I'd base a security eval on the snake oil salesman....lol. Even my bearded dragon is ROTFLHAO.
“I use @#$&^ Firewall – it's a gud 'n and it ain't ever let me down.”:D :D
cheers
I use the best Comodo firewall, it is the award winning personal firewall software on Internet..
Visit: http://personalfirewall.comodo.com/
FFS Sher~ this thread is almost 6 YEARS old :eek: since it was Hi-Jacked, and EIGHT years since initiated, when the personal FW might have worked, but didn't actually EXIST ........ are you by any chance staff for Comodo? just a hunch :) and as PERSONAL FW, it isn't up to snuff for corporate environments eitherQuote:
Originally Posted by Sherinfriedler
I used to have Norton and then avg, one day when I ran the avast antivirus I got about 200 virus(no kidding).
Now I use Zonealarm (besides the windows firewall) and got almost no problem with virus, the ones I got came from pendrives. Don't know if there is any better firewall, that's the one I use
Which Operating System is installed??
Windows Vista, Win7 & 8 have excellent firewalls and really don't need a 3rd party firewall especially if you are connected to a router that is firewall protected.
XP? Yes! The firewall on XP is only protects you from inbound traffic and if by chance anything did get past that firewall there is nothing to prevent it from escaping.
If you insist on a 3rd party firewall that is included in a full AV suite and is not free, I would recommend Avast Pro 2014.
Otherwise, I would install Avast free and rely on the Windows Firewall.
Hi,
You might try Avast! alongside ZoneAlarm firewall...............I have found that they work well together.
However; there is no antivirus for human stupidity;)
I use Kaspersky on my Windows 7, and according to the site, it is now compatible with 8!
A firewall is software or hardware that checks information coming from the Internet or a network, and then either blocks it or allows it to pass through to your computer, depending on your firewall settings. Even if you think there's nothing on your computer that would interest anyone, a worm could completely disable your computer, or someone could use your computer to help spread worms or viruses to other computers without your knowledge.
My guess is this isn't a question about commercial firewalls, but I'm going to throw in that a Palo Alto Networks PA-200 is pretty-much the best firewall you can get for home -- yes, its expensive, but you get what you pay for.
How about Outpost Firewall?
There really is no point - you already have a NAT firewall in the router, so even your default OS X firewall is really not doing anything for you. All you would be doing is adding layers of meaningless complexity and running yet more daemons to bog things down, for no real security gain.
Try our product IPBlock. It works on servers running on Windows Server and the major Linux distributions.
Ummm ... Ya'll are about 17 years late.
And the OP has not been back on this site for 13 years.