Results 1 to 10 of 10

Thread: Recommend Network Security Appliance?

  1. #1
    Join Date
    Jul 2012
    Beans
    17

    Question Recommend Network Security Appliance?

    Hi everyone,

    I have couple of boxes of Ubuntu 10.04 servers in my office environment. At the same time I have 10 Apple Macs for end users usage.

    I am considering to buy Network Security Appliance (firewall for internal office environment), reviewed SonicWall NSA2400 and PaloAlto PA-500 (entry level but super expensive). Sonicwall is more affordable to my environment.

    However Sonicwall's reporting module only works on Windows Server 2008. Without that reporting module, I can't check historic data.

    I need to have a network security appliace for this:-
    a) works well with linux and apple, probably can link up with Linux OpenLDAP or something instead of tracking by IP address?
    b) appmonitor - blocks facebook, facebook chat, block urls
    c) anti-virus and anti-spyware
    d) QOS - used for outbound SIP calls, priority port 5060
    e) SSL VPN
    f) IPSec VPN
    g) basic wan acceleration

    Any recommendations? Thank you.

  2. #2
    Join Date
    Feb 2010
    Location
    White Plume Mountain
    Beans
    8,115
    Distro
    Ubuntu 14.04 Trusty Tahr

    Re: Recommend Network Security Appliance?

    A decent Cisco router can handle most, if not all, of those tasks.
    "I want a dumb phone that allows me to decide just how smart it can be." ~me



  3. #3
    Join Date
    Jul 2012
    Beans
    17

    Re: Recommend Network Security Appliance?

    any specific cisco model?

    router can do firewall? hmm?

  4. #4
    Join Date
    Jun 2007
    Location
    Porirua, New Zealand
    Beans
    Hidden!
    Distro
    Ubuntu

    Re: Recommend Network Security Appliance?

    Quote Originally Posted by ericmachine View Post
    router can do firewall? hmm?
    Both my all-in-one modem/routers offer firewall functions. I gather you'd like something that offers a bit more peace of mind, and with the gadgets I have, reporting might be a bit of a challenge.
    Forum DOs and DON'Ts
    Never assume that information you find using a search engine is up-to-date.

  5. #5
    Join Date
    Aug 2006
    Location
    Somewhere in the hell
    Beans
    294
    Distro
    Ubuntu 12.04 Precise Pangolin

    Re: Recommend Network Security Appliance?

    Quote Originally Posted by ericmachine View Post
    Hi everyone,

    I have couple of boxes of Ubuntu 10.04 servers in my office environment. At the same time I have 10 Apple Macs for end users usage.

    I am considering to buy Network Security Appliance (firewall for internal office environment), reviewed SonicWall NSA2400 and PaloAlto PA-500 (entry level but super expensive). Sonicwall is more affordable to my environment.

    However Sonicwall's reporting module only works on Windows Server 2008. Without that reporting module, I can't check historic data.

    I need to have a network security appliace for this:-
    a) works well with linux and apple, probably can link up with Linux OpenLDAP or something instead of tracking by IP address?
    b) appmonitor - blocks facebook, facebook chat, block urls
    c) anti-virus and anti-spyware
    d) QOS - used for outbound SIP calls, priority port 5060
    e) SSL VPN
    f) IPSec VPN
    g) basic wan acceleration

    Any recommendations? Thank you.
    I would like to recommend Untangle.

    Samiux

  6. #6
    Join Date
    Apr 2008
    Location
    LOCATION=/dev/random
    Beans
    5,767
    Distro
    Ubuntu Development Release

    Re: Recommend Network Security Appliance?

    If you have hardware that you can use or are willing to purchase then you could take a look at Untangle, Smoothwall, Zentyal and Vyatta, all of which offer software only subscriptions as well as bespoke hardware appliances.
    Cheesemill

  7. #7
    Join Date
    Mar 2011
    Beans
    668

    Re: Recommend Network Security Appliance?

    Or you can have a look at pfsense, which should be able to be expanded to do IDS/IPS as well as perform as a basic Firewall.

    https://en.wikipedia.org/wiki/PfSense

    Features

    Stateful firewall
    Network Address Translation
    Redundancy through CARP and pfsync
    Outbound and inbound load balancing
    Virtual Private Networks using IPsec, L2TP, OpenVPN, or PPTP
    PPPoE server
    RRD graphs reporting
    Real-time information using Ajax
    Dynamic DNS
    Captive portal
    uPnP
    VLAN (802.1q)
    DHCP server and relay
    Live CD version available
    Support for software extensions, including the Squid proxy server, the Snort intrusion prevention/detection system, and the FreeSWITCH[7] telephony platform

  8. #8
    Join Date
    Feb 2010
    Location
    White Plume Mountain
    Beans
    8,115
    Distro
    Ubuntu 14.04 Trusty Tahr

    Re: Recommend Network Security Appliance?

    Quote Originally Posted by ericmachine View Post
    any specific cisco model?

    router can do firewall? hmm?
    Cisco offers multiple types of firewalls, if you purchase the models with the proper version of IOS. You would need to search their site for the proper hardware for your set up.
    Routers http://www.cisco.com/en/US/products/...gory_Home.html

    Security hardware http://www.cisco.com/en/US/products/...evc/index.html They do offer network based equipment that can scan machines and traffic for a wide range of malware signatures. This equipment, with service plans, can get expensive an may not be an option for a small business.

    With a few ACLs, Facebook and other sites can be blocked. QoS is easy to set up and adjust. Cisco offers quite a few ways of managing VPNs. These are all done on the router or switch.

    Juniper offers equivelant hardware, but I have not had the pleasure of working with their systems, yet. https://www.juniper.net/us/en/products-services/
    Last edited by uRock; August 14th, 2012 at 12:24 AM.
    "I want a dumb phone that allows me to decide just how smart it can be." ~me



  9. #9
    Join Date
    Feb 2010
    Location
    White Plume Mountain
    Beans
    8,115
    Distro
    Ubuntu 14.04 Trusty Tahr

    Re: Recommend Network Security Appliance?

    Quote Originally Posted by samiux View Post
    I would like to recommend Untangle.

    Samiux
    That looks like a great product. I will have to look into that in the near future. Thanx!
    "I want a dumb phone that allows me to decide just how smart it can be." ~me



  10. #10
    Join Date
    Jul 2012
    Beans
    17

    Re: Recommend Network Security Appliance?

    Thanks everyone, will take a look on this one untangle looks good

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •