RE: Need secure firewall for SOHO

["Mike Sweeney" <mikesweeney () packetattack com>]

For the same price, you can also look at the Fortigate 60 from Fortinet. It has a much better feature set than a PIX 
with such goodies as dual WAN ports, built-in modem, built-in AV, Content scanning and IDS just to name a few. The unit 
uses ASIC technology to make for a very fast throughput.

Mike Sweeney

_________________________________

Packetattack.com
Network Design and Security
www.packetattack.com

Office (714).637.4235

"QUIS CUSTODIET IPOS CUSTODES"
    WHO SHALL GUARD THE GUARDS

-----Original Message-----
From: Javier Otero De Alba [mailto:jotero () smartekh com]
Sent: Friday, February 04, 2005 9:21 AM
To: mike () genxweb net;dallas jordan
Cc: security-basics () securityfocus com
Subject: RE: Need secure firewall for SOHO

You can use Juniper/Netscreen 5GT, supports VPNs, Qos, you can add: Deep Inspection (IPS), full antivirus from Trend, 
web page filter from Surfcontrol, the price starts al $700

Ing. Fco. Javier Otero De Alba
Diplomado en Seguridad Informática ITESM CEM
ITStrap
Product Manager
Juniper Secure Access SSL

5243-4782 al 84 Ext.300
México, D.F.



-----Mensaje original-----
De: mike () genxweb net [mailto:mike () genxweb net]
Enviado el: Jueves, 03 de Febrero de 2005 12:02 p.m.
Para: dallas jordan
CC: security-basics () securityfocus com
Asunto: Re: Fwd: Need secure firewall for SOHO - Sender is forged (SPF
Fail)


Hum you could pick up a cisco pix 506e new or used for fairly cheap
ranging in price from 600 to 1500. I bought mine for my home network for
850 new sealed in the box on ebay. It had a unrestricted lic and vs 6.3 of
the firmware.

Good luck on your search.

> You could also use http://www.ipcop.org which nice dedicated solution.
>
>
> ---------- Forwarded message ----------
> From: dallas jordan <dallas.jordan () gmail com>
> Date: Wed, 2 Feb 2005 15:28:55 -0500
> Subject: Re: Need secure firewall for SOHO
> To: "DAmbrosia, Jim" <Jim.DAmbrosia () montgomerycollege edu>
>
>
> Jim,
>     He can run OpenBSD on a fairly low power pc and it will do just
> fine.  Then he can us a 16 port switch for his clients.   That would
> be fairly cheap and OpenBSD is an excellent firewall, both performance
> and security wise.
>
>
> On Tue, 1 Feb 2005 08:47:12 -0500, DAmbrosia, Jim
> <Jim.DAmbrosia () montgomerycollege edu> wrote:
> > To the group,
> >
> > I have a colleague who has a SOHO network using ADSL.  He is using a
> standard Linksys router for his firewall, but has reached a limit in the
> number of ports it can open and manage.  I don't have one on hand to
> check, but evidently the Linksys only has ten slots to configure ports
> to be opened and he needs 12-15 or so.
> > Without a lot of money he wants to get a different firewall up and
> running that has more ports that it can manage.
> > I suggested the free version of zone alarm as the only free one I'm
> aware of; however it turns out that he wrote his thesis on how you can
> crack zone alarm.
> > Looking for another much more secure solution?
> >
> > Thanks,
> >
> > Jim,
>
> --
> Dallas Jordan CCNA, CISSP
> Ernst & Young LLP
> Security & Technology Solutions (STS)
> Office:   404-817-5940
> Mobile:  404-274-2649
> EY/Comm:   7455673
> E-mail:  Dallas.Jordan () ey com
>
>
> --
> Dallas Jordan CCNA, CISSP
> Ernst & Young LLP
> Security & Technology Solutions (STS)
> Office:   404-817-5940
> Mobile:  404-274-2649
> EY/Comm:   7455673
> E-mail:  Dallas.Jordan () ey com
>
>
>
> The information transmitted is intended only for the person to whom or the
> entity to which it is addressed and may contain confidential and/or
> privilaged material. Any review, retransmission, dissemination or other
> use of, or taking of any action in reliance upon, this information by
> persons or entities other than the intended recipient is prohibited. If
> you received this in error, please contact the sender and delete the
> material from any computer.
>
> John Gisler
> 2/2/2005