My ideal solution is to use a Firewall/VPN Appliance (Cisco and Symantec both have good offerings) for perimeter protection.
But, use a desktop firewall/IDS/IPS/whatever-they-decide-to-call-them-next system for your end-users, as well. Windows XP has this built-in (I think they are licensing ZoneLabs technology). Linux has it freely available. Otherwise, you can use ZoneAlarm, Kerio Personal Firewall, or whatever for additional protection. Trying to run an Enterprise Firewall off of a software-based distribution just doesn't seem very smart. But if I had to consider a software-based firewall, I would definitely go with Linux. Why? Because you can strip out every single piece of code that you don't need. You can even download bootable CDs that can run with no h.d.d that have already done a reasonable job of this. Windows-based firewalls might be "pretty" and might be effective. But you still have Windows sitting underneath it. -----Original Message----- From: Andre Volmensky [mailto:[EMAIL PROTECTED] Sent: Thursday, July 31, 2003 1:12 AM To: [EMAIL PROTECTED] Subject: Linux firewall vs Windows and Hardware based firewalls Hello all, I have to put forward an argument to management regarding setting up a firewall on some of our clients networks. What are the advantages of a linux firewall over something like Windows with WinRoute on it, or even a hardware based firewall. What are the disadvantages etc. I know I am asking on a linux users mailing list, but I would also like reply's not to be too bias. Thanks Andre -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]