Posted: 1/13/2003 11:12:14 AM EDT
|
We have a Small NT 4.0 SERVER box that is connected to the interent through ISDN. I am looking for a cheap software that will at least help block attacks. I looked at Norton 2003 but it does not look like it supports NT 4.0 SERVER. Anyone have any ideas? Note We tried one- i think it was Black ice about 1.5 yrs ago and it seemed to really screw up our system (locking up, blocking everyhing) thanks |
|
Buy yourself a Nexland firewall/router: (IDENTICAL to the Symantec VPN200r -- they OEM the product for Symantec) [url]www.Nexland.com[/url] NICE stuff for a great price. (around 300 - 400 bucks) We have the Symantec Velociraptor 1300's here, but the cost was around $13,000 @ !! |
|
For NT server I would recommend Visnetic. [url]http://www.deerfield.com/products/visnetic_firewall/[/url] I've worked with a few different NT walls and they seemed to either be too 'automatic' and didn't let you view/set the specific protocols and ports (you just hope they're doing the right thing) or they are way too cumbersome/complicated (an engineer couldn't get it set up right). This one is pretty easy to understand, customizable and very effective. |
|
I vote for doing BOTH the hardware and software firewalls. Norton for NT Server is probably their 'Corporate' version which will cost you lots more for not many extras. Can't help more there. As for the HW firewall, get one with Stateful Packet Inspecion (SPI). It does better against attacks. |
|
I've had good luck with a cheap hardware router/firewall (like the linksys, or SMC ones), AND using a software firewall in conjunction. I am fairly certain I used TPF (tiny personal firewall) back in the nt4 workstation days, but don't quote me on that. It is free, very powerful (and controllable), and works as a service (so it is running even before you log onto the computer). I've had good success with this piece of software for years... Still use it on my w2k server and w2k professional stations. A hardware firewall will block outside access to your network (unless you've specifically opened up ports or done a few other things intentionally), but it WONT stop rampant programs from accessing out, such as trojan horses. A software firewall will block virus/trojans, and allow you to customize rules for accessing from outside, but they can be defeated. If you use both, you are protected much better than just one or the other. |
|
Quoted: If you want cheap, get a Linksys Router and NAT your IP's. Then get something like ZoneAlarm to act as a software firewall. That's the route I took. I have the LinkSys 8-port router (which is advertised as having Stateful Packet Inspection) along with Zone Alarm on every machine in my home network. Seems to work pretty good and it's not too expensive. |
|
I don't recommend installing firewall software on your server. A firewall should act as a firewall and a server as a server. As others have stated implement NAT. If you are not hosting any services on the server do not do any port forwarding and your direct attacks will stop. If you are hosting services, ex. HTTP, only allow the specific port pass thru to the server. Feel free to IM me with specifics if you wish. This is my area of expertise. |
|
Get a spare computer and put a Linux firewall on it. A P2 300 mzh with 64 meg RAM can handle a fully saturated 10mbs connection. You can pretty much do anything you want from there. Just look around and you'll find a Linux distribution that even a MSCE can install. |