Netscreen...perhaps, perhaps not. If you want anything fancy, like load balancing--unless they've fixed the problem, it doesn't work.
The interface is clunky... the bigger problem is failure. If a system/software based firewall fails, I can rebuild it in very short order. If the Netscreen, Linksys, Netgear, etc, basically -- an "appliance" fails, I cannot do so. That, and with a home brew firewall, I have a MUCH better idea what is going on under the covers. The appliances tend to be simpler to setup for a novice. That is the only advantage...well, that and space. If you're on a small budget, a 486 or pentium class PC with your choice of Unix/Linux/BSD OS -- and a little elbow grease (following some docs at linuxdoc.org), you have a low cost solution. Or, drop some more money on a low end Dell desktop and either an NT/2000 based firewall (such as Raptor) or a BSD hardened firewall package like Borderware -- and you have a solid solution. The advantage here is application proxy protection. There is no interface fowarding going on (like the average NAT/packet filter firewall based on Linux or FreeBSD) -- it takes packet filtering and adds in an additional layer of protection. Borderware has a real nice DMZ setup to run with the normal firewall. Only drawback is you pay for it. But the software is worth every penny. If you go appliance based..then yes, Netscreen is much, MUCH nicer than Linksys or Netgear. The latter two are not intended to handle professional traffic...regardless of marketing hype. Your best bet might be to make a checklist of features, requirements, cost, etc and do a side-by-side to see what works best for you. Good luck, bryan On 13 Jul 2002 11:11 MDT you wrote: > Netscreen 5XP - ditch the software based stuff. This sits behind your router > and will either block or allow based on your decision. > > Steve Clark > Clark Systems Support, LLC > AVIEN Charter Member > "Who's watching your network?" > www.clarksupport.com > 301-610-9584 voice > 240-465-0323 Efax > > The data furnished in connection with this document is deemed by Clark > Systems Support, LLC., to contain proprietary and privileged information and > shall not be disclosed or used for the benefit of others without the prior > written permission of Clark Systems Support, LLC. > > -----Original Message----- > From: Tim Bowes [mailto:[EMAIL PROTECTED]] > Sent: Saturday, July 13, 2002 11:22 AM > To: [EMAIL PROTECTED] > Subject: Optimal Home/Office Firewall Solution > > I run a small internet business from my home. Originally I was using a > combination of a Netgear FR318 and a copy of ZoneAlarm Pro on each system > connected to the LAN. The Netgear firewall keeps breaking down, third time > this year already. Can anyone recommend anouther hardware/software firewall > solution? > > Also I have noticed that some of the better attempts to gain access to the > systems on the LAN have totally bypassed the firewall and acted as a local > IP, How can I put a stop to this? > > Tim >
