Firewall
-
Hey all. I need some advice for a friend. She has had a bit of trouble with hackers getting into her network. She has asked me what firewall I recommend and I honestly don't know what best suites her circumstances. It has been a very long time since I have used a firewall that wasn't a Cisco. I was thinking along the lines of one of the Lynksis boxes, or maybe a netgear. It is just a home network so she doesn't have a huge budget but she dies need decent security. Maybe I will just organize her a Cisco.....
Brad Australian -CAUTION- The previous statement may contain traces of PHP, and by reading this statement you negate the right to vote me down.
You could try ZoneAlarm.
Trinity: Neo... nobody has ever done this before. Neo: That's why it's going to work.
-
You could try ZoneAlarm.
Trinity: Neo... nobody has ever done this before. Neo: That's why it's going to work.
-
You could try ZoneAlarm.
Trinity: Neo... nobody has ever done this before. Neo: That's why it's going to work.
Please don't swear :~
Artificial Intelligence is no match for Natural Stupidity
No one can understand the truth until he drinks of coffee's frothy goodness. ~Sheik Abd-al-Kadir
I can't always be wrong ... or can I? -
No we want to be able to set up a VPN etc.
Brad Australian -CAUTION- The previous statement may contain traces of PHP, and by reading this statement you negate the right to vote me down.
What box is facing the net? windows/unix/linux
Artificial Intelligence is no match for Natural Stupidity
No one can understand the truth until he drinks of coffee's frothy goodness. ~Sheik Abd-al-Kadir
I can't always be wrong ... or can I? -
What box is facing the net? windows/unix/linux
Artificial Intelligence is no match for Natural Stupidity
No one can understand the truth until he drinks of coffee's frothy goodness. ~Sheik Abd-al-Kadir
I can't always be wrong ... or can I?Basically this is how it is structured: Web> Modem > Ancient Router with built in firewall(Doesn't work too well) ans VPN support.> Print server(OLD); New printer; 1 Ps3; 4 Windows Boxes; 1 SUSE box; central networked storage; multiple media devices; a couple laptops SO basically she needs a hardware firewall at the place of the router.
Brad Australian -CAUTION- The previous statement may contain traces of PHP, and by reading this statement you negate the right to vote me down.
-
Basically this is how it is structured: Web> Modem > Ancient Router with built in firewall(Doesn't work too well) ans VPN support.> Print server(OLD); New printer; 1 Ps3; 4 Windows Boxes; 1 SUSE box; central networked storage; multiple media devices; a couple laptops SO basically she needs a hardware firewall at the place of the router.
Brad Australian -CAUTION- The previous statement may contain traces of PHP, and by reading this statement you negate the right to vote me down.
I have a xincom. It's fairly inexpensive, lots of features, and better than either a linksys OR a netgear.
"Why don't you tie a kerosene-soaked rag around your ankles so the ants won't climb up and eat your candy ass..." - Dale Earnhardt, 1997
-----
"...the staggering layers of obscenity in your statement make it a work of art on so many levels." - Jason Jystad, 10/26/2001 -
Basically this is how it is structured: Web> Modem > Ancient Router with built in firewall(Doesn't work too well) ans VPN support.> Print server(OLD); New printer; 1 Ps3; 4 Windows Boxes; 1 SUSE box; central networked storage; multiple media devices; a couple laptops SO basically she needs a hardware firewall at the place of the router.
Brad Australian -CAUTION- The previous statement may contain traces of PHP, and by reading this statement you negate the right to vote me down.
DNS? DHCP? NAT? You can setup the suse box to act as the router if you dont find a hardware sollution. It could save you alot of time and effort - i had a network using it and havent picked up any problems but i changed it to freeBSD becouse it was a low end box now it works gr8.
Artificial Intelligence is no match for Natural Stupidity
No one can understand the truth until he drinks of coffee's frothy goodness. ~Sheik Abd-al-Kadir
I can't always be wrong ... or can I? -
Basically this is how it is structured: Web> Modem > Ancient Router with built in firewall(Doesn't work too well) ans VPN support.> Print server(OLD); New printer; 1 Ps3; 4 Windows Boxes; 1 SUSE box; central networked storage; multiple media devices; a couple laptops SO basically she needs a hardware firewall at the place of the router.
Brad Australian -CAUTION- The previous statement may contain traces of PHP, and by reading this statement you negate the right to vote me down.
Make double-damn sure that the first thing you do on your firewall is change the admin password (and user ID if it will let you). To make things just a little more difficult, you could also change the internal subnet IP to something other than 192.168.x.x.
"Why don't you tie a kerosene-soaked rag around your ankles so the ants won't climb up and eat your candy ass..." - Dale Earnhardt, 1997
-----
"...the staggering layers of obscenity in your statement make it a work of art on so many levels." - Jason Jystad, 10/26/2001 -
DNS? DHCP? NAT? You can setup the suse box to act as the router if you dont find a hardware sollution. It could save you alot of time and effort - i had a network using it and havent picked up any problems but i changed it to freeBSD becouse it was a low end box now it works gr8.
Artificial Intelligence is no match for Natural Stupidity
No one can understand the truth until he drinks of coffee's frothy goodness. ~Sheik Abd-al-Kadir
I can't always be wrong ... or can I?I'd rather not on a network this size. As soon as you use a PC you have to worry about constantly updating it and it will be too much work to get all the features exactly right. I am more likely to nitpick if I actually have the ability to change settings.
Brad Australian -CAUTION- The previous statement may contain traces of PHP, and by reading this statement you negate the right to vote me down.
-
Hey all. I need some advice for a friend. She has had a bit of trouble with hackers getting into her network. She has asked me what firewall I recommend and I honestly don't know what best suites her circumstances. It has been a very long time since I have used a firewall that wasn't a Cisco. I was thinking along the lines of one of the Lynksis boxes, or maybe a netgear. It is just a home network so she doesn't have a huge budget but she dies need decent security. Maybe I will just organize her a Cisco.....
Brad Australian -CAUTION- The previous statement may contain traces of PHP, and by reading this statement you negate the right to vote me down.
I would recommend a Netgear. I also had these kind of problems. Then I plugged a Netgear Router+FW in, and no problems anymore since then. It is easy to configure and very reliable ! Additionally I have a ZA Software FW also installed. Marius
--------------------------------------------------------- Complete freedom is a state without context ---------------------------------------------------------
-
Make double-damn sure that the first thing you do on your firewall is change the admin password (and user ID if it will let you). To make things just a little more difficult, you could also change the internal subnet IP to something other than 192.168.x.x.
"Why don't you tie a kerosene-soaked rag around your ankles so the ants won't climb up and eat your candy ass..." - Dale Earnhardt, 1997
-----
"...the staggering layers of obscenity in your statement make it a work of art on so many levels." - Jason Jystad, 10/26/2001 -
I have a xincom. It's fairly inexpensive, lots of features, and better than either a linksys OR a netgear.
"Why don't you tie a kerosene-soaked rag around your ankles so the ants won't climb up and eat your candy ass..." - Dale Earnhardt, 1997
-----
"...the staggering layers of obscenity in your statement make it a work of art on so many levels." - Jason Jystad, 10/26/2001 -
Hey all. I need some advice for a friend. She has had a bit of trouble with hackers getting into her network. She has asked me what firewall I recommend and I honestly don't know what best suites her circumstances. It has been a very long time since I have used a firewall that wasn't a Cisco. I was thinking along the lines of one of the Lynksis boxes, or maybe a netgear. It is just a home network so she doesn't have a huge budget but she dies need decent security. Maybe I will just organize her a Cisco.....
Brad Australian -CAUTION- The previous statement may contain traces of PHP, and by reading this statement you negate the right to vote me down.
I use a US Robotics wireless router+modem+FW combi thing, before that a DLink ISDN router+modem+FW thing and never had any network intrusion problems, although plenty of attempts. Change the admin passwords, close external access to the devices configuration applications, restrict internal access to the device to your networks ip address or subnets. You could run the excellent tests found at Gibson research to assess vulnerability http://www.grc.com[^] I don't run any SW bound firewall, just AV software If memory serves the USR device cost around £80
-
Hey all. I need some advice for a friend. She has had a bit of trouble with hackers getting into her network. She has asked me what firewall I recommend and I honestly don't know what best suites her circumstances. It has been a very long time since I have used a firewall that wasn't a Cisco. I was thinking along the lines of one of the Lynksis boxes, or maybe a netgear. It is just a home network so she doesn't have a huge budget but she dies need decent security. Maybe I will just organize her a Cisco.....
Brad Australian -CAUTION- The previous statement may contain traces of PHP, and by reading this statement you negate the right to vote me down.
You might try SmoothWall to turn an old machine into a firewall. Suppose to be good and if you got an extra box laying around (I know I usually do), then it is an easy way to go. The software had tons of options. http://www.smoothwall.org/[^]
Rocky <>< Latest Code Blog Post: Vista for Web Development, Read this first! Latest Tech Blog Post: USA City Burnt To Death...
-
Hey all. I need some advice for a friend. She has had a bit of trouble with hackers getting into her network. She has asked me what firewall I recommend and I honestly don't know what best suites her circumstances. It has been a very long time since I have used a firewall that wasn't a Cisco. I was thinking along the lines of one of the Lynksis boxes, or maybe a netgear. It is just a home network so she doesn't have a huge budget but she dies need decent security. Maybe I will just organize her a Cisco.....
Brad Australian -CAUTION- The previous statement may contain traces of PHP, and by reading this statement you negate the right to vote me down.
-
Basically this is how it is structured: Web> Modem > Ancient Router with built in firewall(Doesn't work too well) ans VPN support.> Print server(OLD); New printer; 1 Ps3; 4 Windows Boxes; 1 SUSE box; central networked storage; multiple media devices; a couple laptops SO basically she needs a hardware firewall at the place of the router.
Brad Australian -CAUTION- The previous statement may contain traces of PHP, and by reading this statement you negate the right to vote me down.
You don't say anything about whether it should be wireless or wired, nor if your friend has some kind of switch or if all equipment is plugged directly into the router. I've used D-Link 604[^] for about six years and I think it's a great alternative for home network solutions. D-Link 604 is a router, DHCP server and firewall in one single box for approx. $50. The firewall also has the ability to disable ping response to WAN side and DoS attack protection, but that has to be configured through the web interface. -- Rog
"It's supposed to be hard, otherwise anybody could do it!" - selfquote
"No one remembers a coward!" - Jan Elfström 1998
"...but everyone remembers an idiot!" - my lawyer 2005 when heard of Jan's saying above -
You don't say anything about whether it should be wireless or wired, nor if your friend has some kind of switch or if all equipment is plugged directly into the router. I've used D-Link 604[^] for about six years and I think it's a great alternative for home network solutions. D-Link 604 is a router, DHCP server and firewall in one single box for approx. $50. The firewall also has the ability to disable ping response to WAN side and DoS attack protection, but that has to be configured through the web interface. -- Rog
"It's supposed to be hard, otherwise anybody could do it!" - selfquote
"No one remembers a coward!" - Jan Elfström 1998
"...but everyone remembers an idiot!" - my lawyer 2005 when heard of Jan's saying above -
Those xincom units look like the best option I have seen. What model are you using?
Brad Australian -CAUTION- The previous statement may contain traces of PHP, and by reading this statement you negate the right to vote me down.
I have the DPG-402. The DPG-502 is a newer version of the same unit.
"Why don't you tie a kerosene-soaked rag around your ankles so the ants won't climb up and eat your candy ass..." - Dale Earnhardt, 1997
-----
"...the staggering layers of obscenity in your statement make it a work of art on so many levels." - Jason Jystad, 10/26/2001 -
I have the DPG-402. The DPG-502 is a newer version of the same unit.
"Why don't you tie a kerosene-soaked rag around your ankles so the ants won't climb up and eat your candy ass..." - Dale Earnhardt, 1997
-----
"...the staggering layers of obscenity in your statement make it a work of art on so many levels." - Jason Jystad, 10/26/2001 -
Cheers mate, Email me when you find out. Brad [-at-] trueguava [dot] com
Brad Australian -CAUTION- The previous statement may contain traces of PHP, and by reading this statement you negate the right to vote me down.
I edited my original reply - it's a DPG402. I think it's been replaced by the 502.
"Why don't you tie a kerosene-soaked rag around your ankles so the ants won't climb up and eat your candy ass..." - Dale Earnhardt, 1997
-----
"...the staggering layers of obscenity in your statement make it a work of art on so many levels." - Jason Jystad, 10/26/2001
