I have a Windows 2000 Advanced Server setup with a T1 and a Cisco Router 2600 that is managed by our T1 provider. I've also have deployed the latest version of IceCap (the network version of Black Ice) blocking all ports, other than those needed to support our email server, 25 and 110. Furthermore, I've blocked every port using Microsoft's IPSec, again excluding 25 and 110, and naturally we keep up-to-date with all the latest patches from Microsoft.
My question is, as this machine is not setup using a Proxy server nor do I have a hardware firewall does anyone see a real need to purchase a hardware firewall? Or furthermore a proxy server? I understand that this would be the ideal situation and every ounce of effort you make a hacker go through limits their ability to hack into my network, but doesn't it seem a little redundant to add these extra steps? Does anyone feel that these extra steps, extra effort and added cost are justified? Any suggestions and or comments would be greatly appreciated. Thanks
