Thank you again for the responses I received to my question... here is a
summary for those who are interested.....
My original....
"I'm just beginning my search for a low cost firewall/filter to provide
logging and advanced filtering for a protected segment on our internal
network.....to segment off a small number of sensitive unix servers. No
proxys....just detailed logging and filtering capabilities..... At this
point I'm not interested in using authentication....more interested in
obtaining very granular logging and filtering at a reasonable cost "
Responses:
I received a lot of suggestions for Linux and BSD...some very detailed....
"Since you did not specify any type of hardware requirements, I will
assume the following: (You can put together a system for around $700.00)
Single Intel/AMD Pentium/Celeron/Athlon processor (speed > 400 Mhz)
66, 100, or 133 Mhz Bus speed
128 MB PC100 SDRAM
Single 4 or 9 GB UltraDMA/66 hard drive
Single CD-ROM drive
Single 3.5" floppy drive
Dual 10/100BaseT NICs
If you want basically free software, then there are the following choices:
1. Linux 2.2.x with IPChains
2. Linux 2.0.x with IPfwadm
3. FreeBSD 3.4 with IPfwadm
4. FreeBSD 3.4 with ipfilter
5. NetBSD (latest rev) with IPfwadm
6. NetBSD (latest rev) with ipfilter
7. OpenBSD (latest rev) with IPfwadm
8. OpenBSD (latest rev) with ipfilter
There are some third party solutions that can get more extensive for
these platforms but as you stated above, you want good throughput, basic
packet filtering, basic routing, and extensive logging. These "builtin"
packages for the above OSes will do all this. However, be advised, Linux
has a throughput issue when connecting both sides at high speeds. This
is be repaired and will be ready in kernel 2.4.x. High speed means that
both sides are at least T3 (45 Mbps).
I would suggest looking at the 4 OSes, installing each, and playing with
the various options to see which you like the best. Also, as you search
the net, you will notice that there are discussions on the merits of each
OS as a firewall/router. Read each carefully to see what information they
hold."
As well as a few commercial suggestions....
"gnatbox www.gnatbox.com
depending on what your needs are, it ranges from free( lite version with up
to 5 users) or full"
"http://www.network-1.com/products/products.htm - nice small firewall, with
price about 1000$"
"The SonicWall Firewall
Cisco with Firewall Feature Set
www.technologics.com - BSDI with FW-1"
"Elron Software.... a stateful inspection firewall for $1500 to protect 25
nodes"
"http://www.signal9.com/ Conseal Firewall "
Guess I'm going to be spending a lot of time doing evals......
Rick Salisko
Security Administrator
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
