CI Travel Precedence: bulk Sender: [EMAIL PROTECTED] Reply-To: [EMAIL PROTECTED]
Hello, Monday, November 25, 2002, 3:21:36 PM, you wrote: Hawk> Hi, Hawk> Can some recommend a firewall for NT. We have 3 servers and would like a Hawk> system that has a central control where we can monitor and edit policies to Hawk> be installed on the 3 servers. Please stay away from any firewall or IDS system (excluding the senors) on your production systems. Have been there before and would never go back. Software firewalls are ok for home use and even some small sites. *nix has some great things but you have to get into that mind set. Note: check out snort for IDS I have been playing with the win version I mention IDS for the reason Firewalls are just that a wall. Yes you can get alot of info from them (toooo much sometime) but IMHO you really also need IDS to get the whole picture. Hardware firewalls are the best thing out there for plug and pray setups. Get them up tweek as you go. Remember not to go to cheap security is not something to save on. With that said: You can get a PIX 506 or 501 for around 1k off ebay. Check the licensing on these you may need to purchase a IOS also check at what they can handle. I belive the 501 and 506 can only handle a certain number of in/out connections. You may be able to get a 515 for 3k or less if you shop. If you go with PIX turn OFF the SMTP FIXUP (NO SMTP FIXUP) Not sure what CheckPoint has to offer???? -- Best regards, ~Paul~ mailto:[EMAIL PROTECTED] --- [This E-mail scanned for viruses by Declude Virus/McAfee] To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/
