Page 2 of 3 FirstFirst 123 LastLast
Results 11 to 20 of 26

Thread: Hardware Firewalls

  1. #11
    Jenkem Addict imported_wyze's Avatar
    Join Date
    Jul 2007
    Posts
    1,543

    Default

    Yes, IME BSD-based kernels with PF (as firewall appliances) are superior to Linux/Netfilter machines.. they just seem to see and process more packets.
    dd if=/dev/swc666 of=/dev/wyze

  2. #12
    Good friend of the forums
    Join Date
    Jun 2008
    Posts
    425

    Default

    Yes, IME BSD-based kernels with PF (as firewall appliances) are superior to Linux/Netfilter machines.. they just seem to see and process more packets.
    I think thats the good thing about hardware FW.
    OP, checkout checkpiont or cisco.
    Most SOHO broadband router come with a packet filter, you can setup, it won't go to the stage of applaction FW, but for $100 you arn't going to get anything that good, and and thats hardware.

  3. #13
    Moderator
    Join Date
    Jan 2010
    Posts
    167

    Default

    Quote Originally Posted by SephStorm View Post
    Can anyone suggest a good hardware Firewall? My needs are small, a small SOHO network, but I'm not pleased with my current setup, i'd like to really branch out.

    my ideal range would be sub-$100 US. I'll understand if I need to go higher though as an investment. I tried looking for some on Newegg and Tiger Direct, but the ones I found in my range had disappointing reviews.
    Within 100 buks you will not get a goot hardware firewall. I'm using the small Juniper SSG5 [1], but also this small box is much more expensive.

    Like others have mentioned bevore, there are lot of Linux/Unix distributions for this price range. I've used the m0n0wall [2] a long time and it has done a really good job. Give it a try

    m-1-k-3

    [1]: http://www.juniper.net/customers/sup...ducts/ssg5.jsp
    [2]: http://m0n0.ch/wall/

  4. #14
    My life is this forum Barry's Avatar
    Join Date
    Jan 2010
    Posts
    3,817

    Default

    Old Dell laptop and smoothwall or ipcop works pretty well. Look at it this way, the pix uses an amd 586 proc, a lot of their routers are either 486 or even power pc g3 procs. You really don't need a lot of horsepower for a soho firewall. My house, and my wife's buisness has used smoothwall for our firewalls for the past five or six years, no problems.
    Of course, if you really wanted to have some fun, go to Wal-Mart late at night and ask the greeter if they could help you find trashbags, roll of carpet, rope, quicklime, clorox and a shovel. See if they give you any strange looks. --Streaker69

  5. #15
    Senior Member streaker69's Avatar
    Join Date
    Jan 2010
    Location
    Virginville, BlueBall, Bird In Hand, Intercourse, Paradise, PA
    Posts
    3,535

    Default

    Quote Originally Posted by Barry View Post
    Old Dell laptop and smoothwall or ipcop works pretty well. Look at it this way, the pix uses an amd 586 proc, a lot of their routers are either 486 or even power pc g3 procs. You really don't need a lot of horsepower for a soho firewall. My house, and my wife's buisness has used smoothwall for our firewalls for the past five or six years, no problems.
    I have a Pix 501 that I got a couple years ago as one of the firewalls we use for internet access. So far it's performed well, but we're not doing any VPN to it. I've read that even though they offer an unlimited VPN license for it, they fall over with about 4 tunnels attached. The processor on it, seldom goes above 10% utilization. I found several of them on ebay between $80 and $140.
    A third party security audit is the IT equivalent of a colonoscopy. It's long, intrusive, very uncomfortable, and when it's done, you'll have seen things you really didn't want to see, and you'll never forget that you've had one.

  6. #16
    My life is this forum Barry's Avatar
    Join Date
    Jan 2010
    Posts
    3,817

    Default

    Quote Originally Posted by streaker69 View Post
    I have a Pix 501 that I got a couple years ago as one of the firewalls we use for internet access. So far it's performed well, but we're not doing any VPN to it. I've read that even though they offer an unlimited VPN license for it, they fall over with about 4 tunnels attached. The processor on it, seldom goes above 10% utilization. I found several of them on ebay between $80 and $140.
    I've got a couple on a shelf. The most vpn connections I'll ever have at one time will probably be around two. I still need to set up the vpn on my phone though.
    Of course, if you really wanted to have some fun, go to Wal-Mart late at night and ask the greeter if they could help you find trashbags, roll of carpet, rope, quicklime, clorox and a shovel. See if they give you any strange looks. --Streaker69

  7. #17
    Senior Member SephStorm's Avatar
    Join Date
    Aug 2008
    Posts
    166

    Default

    Thanks for all the participation and information. I have heard of smoothwall, I may have to give it a look.
    "You're only smoke and mirrors..."

  8. #18
    Senior Member secure_it's Avatar
    Join Date
    Feb 2010
    Location
    在這兩者之間 BackTrack是4 FwdTrack4
    Posts
    854

    Default

    license restrictions are there.you can opt for UR license.

  9. #19
    Developer
    Join Date
    Mar 2007
    Posts
    6,126

    Default

    Quote Originally Posted by SephStorm View Post
    Thanks for all the participation and information. I have heard of smoothwall, I may have to give it a look.
    If your looking for a firewall that will not be acting as your gateway I would recommend pfsense. It has a unique capability of becoming transparent on the network by bridging the interfaces. This causes the firewall to have no IP's on the network therefore it is "In theory" immune to attack. A third nic is used for management and is simply disconnected when not in use.

  10. #20
    My life is this forum Barry's Avatar
    Join Date
    Jan 2010
    Posts
    3,817

    Default

    Quote Originally Posted by secure_it View Post
    license restrictions are there.you can opt for UR license.
    Who, what????

    Quote Originally Posted by pureh@te View Post
    If your looking for a firewall that will not be acting as your gateway I would recommend pfsense. It has a unique capability of becoming transparent on the network by bridging the interfaces. This causes the firewall to have no IP's on the network therefore it is "In theory" immune to attack. A third nic is used for management and is simply disconnected when not in use.
    I didn't know it could do that. Kinda cool.
    Of course, if you really wanted to have some fun, go to Wal-Mart late at night and ask the greeter if they could help you find trashbags, roll of carpet, rope, quicklime, clorox and a shovel. See if they give you any strange looks. --Streaker69

Page 2 of 3 FirstFirst 123 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •