debianuser Posted December 21, 2006 Share Posted December 21, 2006 The big question when it comes to firewall, is usually: do I get a distro oriented firewall such as IPCOP and so on..., or do I build myself from scratch, editing iptable rules!? feel free to leave comments - Quote Link to comment Share on other sites More sharing options...
Sparda Posted December 21, 2006 Share Posted December 21, 2006 OpenBSD's PF (Packet Filter) is as good as a firewall gets. Quote Link to comment Share on other sites More sharing options...
nico Posted December 22, 2006 Share Posted December 22, 2006 Built and based on gentoo. Quote Link to comment Share on other sites More sharing options...
VaKo Posted December 22, 2006 Share Posted December 22, 2006 Monowall? Or freeBSD? Quote Link to comment Share on other sites More sharing options...
Nils Posted December 22, 2006 Share Posted December 22, 2006 Adding m0n0wall to the poll would be a good idea. But for me, I'll stay with IPCOP. I used it in the past, it was really good, no problems with it. Quote Link to comment Share on other sites More sharing options...
metatron Posted December 22, 2006 Share Posted December 22, 2006 Out of your selection I would go with building one around OpenBSD, but I would sooner buy a firewall with a small footprint and low power requirement from SonicWALL or Jupiter networks. Quote Link to comment Share on other sites More sharing options...
CaveMan Posted December 22, 2006 Share Posted December 22, 2006 hardware firewall for me :p Quote Link to comment Share on other sites More sharing options...
Sparda Posted December 22, 2006 Share Posted December 22, 2006 hardware firewall for me :p A hardware firewall still has to run some software, most likely proprietary and made by Cisco. Not that that is such a bad thing, but you rely on Cisco to release updates for there software when vulnerabilities/bugs are discovered. There in the problem lies, once Cisco have sold you there product they have no real incentive to fix any broken software, Where as open source software tends to get fix far more quickly (often < 48 hours of discovery if it's like an ultra critical thing). Quote Link to comment Share on other sites More sharing options...
JoshuaH Posted December 22, 2006 Share Posted December 22, 2006 I like Sygate for Windows. Quote Link to comment Share on other sites More sharing options...
cooper Posted December 22, 2006 Share Posted December 22, 2006 once Cisco have sold you there product they have no real incentive to fix any broken software This is what Service Level Agreements and support contracts are for. Believe me, you can get your product installed in mission-critical locations only when you can show that your product is solid and capable, and equally of not more importantly that should for whatever reason something go sour, there'll be someone knowledgable nearby that can fix the problem quickly. Cisco has just that. Quote Link to comment Share on other sites More sharing options...
debianuser Posted December 22, 2006 Author Share Posted December 22, 2006 Monowall? Or freeBSD? so you would pick Freebsd over Openbsd - that surprises me, regarding the fact that OpenBsd is the elite in security based OS Quote Link to comment Share on other sites More sharing options...
VaKo Posted December 22, 2006 Share Posted December 22, 2006 Only reason being that I've used FreeBSD myself but not OpenBSD. There are differences sure, but FreeBSD is so easy to setup your grandma could do it sitting on her hands. OpenBSD would probally be a lot better if sercurity is what your after, and I have no idea about any differences in I/O capability they have. You might also want to look at WRAP boxes with m0n0wall preloaded if the footprint is important. Quote Link to comment Share on other sites More sharing options...
nitro13 Posted December 25, 2006 Share Posted December 25, 2006 Only reason being that I've used FreeBSD myself but not OpenBSD. There are differences sure, but FreeBSD is so easy to setup your grandma could do it sitting on her hands. OpenBSD would probally be a lot better if sercurity is what your after, and I have no idea about any differences in I/O capability they have. You might also want to look at WRAP boxes with m0n0wall preloaded if the footprint is important. So would you guys consider m0n0wall to be a good firewall? anyone has tried to the PPTP VPN access?! is that secure, can I trust it to access my stuff from some remote place? would it be encrypted!? better than opening FTP to access my files at home, right? Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.