Hardware Firewall


Recommended Posts

I am considering getting a hardware firewall. I know your all gonna say just use a router but, i have one and it just doesnt cut it. I keep hearing from secuity experts that its best to get a dedicated hardware firewall so what the heck. I found , what looks to be a great one at a low price of about mid $200. I am looking at the Fortigate 50.. Heres the link: http://www.fortinet.com/telesoho.html

This one even has some sort of antivirus adn worm detection system going. Tell me your thougts on something like this or of a better one? THanks

Link to comment
Share on other sites

Same here... I'm looking for a hardware firewall for my home network. I found two cheap model on eBay, WatchGuard Firebox SOHO Firewall WG2500 and 3Com OfficeConnect Internet Firewall 25. Both are sell online for around $450(MPR), but I saw them on eBay around $120. I still can't decide which one is better. Any comments? Thanks.

Link to comment
Share on other sites

What do you mean? Its b/c a software firewall just doesnt cut it. Software firewall is only limted by the operating system it runs on while a hardware soultion has it on OS bascailly, firmware....Seems like no one knows anything here??

Link to comment
Share on other sites

LOL...i knew you would suggest that, but...i do have one..It just really sucks..it seems to cause all kinds of problems and decreases speed. I understand dedicated hardware firewalls do not interfere with speed or anything and provide much better protection. I mean.. why dont corprations just use a router than that only has NAT at best...

Link to comment
Share on other sites

I just got WatchGuard Firebox SOHO Firewall WG2500 from eBay for only $102 (Retail price is over $450). It should be here by next Wednesday. I will let you guys know how good it is. I choose WatchGuard because it seem to be a pretty big company in firewall hardware. They should know what they do.

Link to comment
Share on other sites

I fail to understand what you could be doing that you think you need one. I would think that safe computing and being behind a NATing device (with all inbound ports blocked) should be more than enough for home use.

The requirements for a corp vs a home are quite different - but HEY if you think you need one - then really there is only ONE choice, go with the Cisco PIX 501. I mean if your going to do it - do it RIGHT I always say ;)

http://www.cisco.com/warp/public/cc/pd/fw/...it/px501_ds.htm

Most likely you can pickone up for the low 300's to $400

Link to comment
Share on other sites

I have an ADSL router with hardware Firewall, its a pain in the ass if you ask me. Some games don't work with it.... but that's because they don't tell me what ports I need to open :(

Link to comment
Share on other sites

  • 4 weeks later...

I'm no expert in SOHO firewall but NAT & blocking ALL inbound ports doesn't mean it is safe. No matter what, your HTTP/HTTPS and all other commonly used port would still need to be open for everyday use. It is those port that one can be attacked from.

Ask any REAL security expert and they will tell you NAT is NOT a security feature. Not even PAT.

Watchguard is quite a big brand, so is CISCO. But go down to those security site, do a search on vunnerabilities of the firewall your looking at, if I'm not wrong, CISCO's has lots of holes.

Link to comment
Share on other sites

I have my WatchGuard Firebox SOHO Firewall WG2500 for a month now. It's awesome. It's very easy to config and smart enough to work with any programs I ever want without any problems. It's fast(no lag), don't use any system resource(unlike software forewall).

:cool:

Link to comment
Share on other sites

LOL...i knew you would suggest that, but...i do have one..It just really sucks..it seems to cause all kinds of problems and decreases speed. I understand dedicated hardware firewalls do not interfere with speed or anything and provide much better protection. I mean.. why dont corprations just use a router than that only has NAT at best...
There is one BIG difference between corporations and home users.......

Most corporations have 50 - 4000 users on there network. Home users normally have fewer than 10.

A hardware firewall is a good route to go to, but you don?t NEED a router AND the firewall device. The firewalls that are built for small office / home (SOHO) normally have built in routing capability.

I'm no expert in SOHO firewall but NAT & blocking ALL inbound ports doesn't mean it is safe. No matter what, your HTTP/HTTPS and all other commonly used port would still need to be open for everyday use. It is those port that one can be attacked from.

I administer a small network (100 users) and I am currently using the Sonicwall SOHO3 firewall running NAT and blocking ALL incoming connections (only opening the ports users need for outgoing connections) and a Nexland PRO800Turbo router, and haven?t had any problems (the ONLY reason I am running the PRO800Turbo is because it has dual WAN ports, for both of our connections). I have had MANY computer experts hit my box from the outside and found it 100% safe (I know nothing is 100% but in their eyes, at this time, they couldn?t find a hole.

Link to comment
Share on other sites

This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.