|
Posted by Darko Gavrilovic on March 26, 2005, 5:52 am
If you were Registered and logged in, you could reply and use other advanced thread options
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: RIPEMD160
>
> Hi,
>
> Though I've been using a software firewall for several years now, I've
> recently been inspired to implement a hardware solution in addition
> to it. I've never experienced any obvious problems with my current
> software firewall (Sygate Personal) in terms of instability or
> apparent functionality issues, but just in case, I thought I'd like a
> bit of extra security; especially if anything were to go wrong with
> the software firewall for any reason.
>
> And so, after reading some recommendations in other forums, and since
> I don't have an extra PC available to be set up as a "hardware
> firewall" (some have mentioned something about this as an easy
> solution), I went ahead and purchased/installed a "router" that also
> claims to be a "firewall", the Linksys BEFSX41 v2 (the picture here
> looks slightly different than the actual unit in terms of its
> "face"):
>
> http://www.linksys.com/products/product.asp?grid=34&scid=29&prid=433
>
> The basic setup was very easy, and without any further tweaking on my
> part (yet, until I learn more about this unit), it seems to be
> functioning "as advertised" (I've also "flashed" the firmware to an
> updated version considered to be more stable than the firmware
> version shipped with the unit). However, when I mentioned this new
> unit in another news group (security related, but not specifically
> firewall oriented), someone told me that what I have is not a
> "proper" firewall at all; not in the least little bit according to
> this person. As I warned in my subject line, I'm a newbie when it
> comes to hardware "firewalls", so I'm not entirely sure just what to
> make of that person's comments.
>
> And so, since this newsgroup claims to be specifically firewall
> oriented, I thought I'd ask here...
>
> Is the Linksys BEFSX41 v2 considered to be a real "hardware
> firewall"? Or is it not? Further, regardless of formal definitions
> one way or the other, is it a reasonable thing in terms of working
> with and/or backing up my current software firewall in case of a
> potential software firewall problem? And also as a "first line of
> defense" before anything even reaches the software firewall?
>
> I would appreciate any and all comments that might help me understand
> these issues further! :-)
>
> Thanks!
>
> - --
> Melissa
>
> PGP Public Keys: http://www.willkayakforfood.tk
>
> -----BEGIN PGP SIGNATURE-----
>
> iQCVAwUBQkRicjEYqNTZBqoEAQMn5AP+JC0xNiDXnWMwpMQg/JJPeXLJRBMDUEY1
> axrJ6+wIKOMuwXXs7M82MmpMAW3/QcahthxPXbg1tKjRkN9DKIrvyJBWjNKVDpwH
> /1tSS0xlS7aoicQku1UxWvTHnenUdvKK9lHyx7CfnEnSooHWHExUO05dCWviWNtc
> eIyJwe0/eTY=
> =ohpW
> -----END PGP SIGNATURE-----
101
Howdy. IMO, the other respondents in the other group/forum are being a
little snobby. But yes, it does just drop packets and thats about it. I am
quite impressed by LinkSys/Cisco product line. You should be fine. I like
that they have GPL. http://www.linksys.com/support/gpl.asp
You would get more of a firewall by implementing a dedicated PC w/Linux.
There are quite a few "install and away you go" distro's for that, but I
won't plug them here because you may not be interested.
But, if you are concerned, what you can do is go the next step. Here are a
few.
http://www.sonicwall.com/products/tz150.html
http://www.watchguard.com/products/fireboxsoho6.asp
You get what you pay for, and the above should cost more than LinkSys NAT.
Another thing what "geeks" do to save some $$$, is pickup an old webramp
and load new sonicwall firmware on it. Apparently works quite well and very
cost effective.
webramp: http://tinyurl.com/6n4ac
the hack/mod: http://www.i-hacked.com/content/view/41/42/
cheers,
:-)
--
"Why do they call it rush hour when nothing moves?", Robin Williams
| ![[Newbie alert!] Is the Linksys BEFSX41 hardware Firewall/router a](/images/header.jpg)
XML site map