PDA

View Full Version : A Guide to Hardware Firewalls....



JANDOENT
12-06-00, 09:05 PM
There is a lot of threads that are asking about hardware firewalls, so I thought a thread covering the topic was the best way to reply. There is an independent company that tests and certifies firewalls.This is their site. It will tell you everything from what is a firewall, what criteria is needed, what are the requirements, and what products has made their certification. http://www.icsa.net/html/communities/firewalls/index.shtml
Their criteria is strict and their testing very detailed and thorough. Their certifications set the industry standard. Just follow some links in there to learn.
This is the list of what products have that have met and maintain their certifications; http://www.icsa.net/html/communities/firewalls/certification/vendors/index.shtml
This is a comparison of firewalls listing different types of info; http://www.practicallynetworked.com/sharing/hwrouter_chart.htm
These are some reviews; http://www.practicallynetworked.com/reviews/index_router.htm http://computers.cnet.com/hardware/0-7052-406-634784-634624.html?tag=st.co.7052-404-124183.dir.7052-406-634784-634624 http://www.speedguide.net/reviews/index.shtml
There is alot of sites that have done reviews of individual products, however they would be more for ease of setup type info, not really tech data. If anyone has an interest in a particular product, let me know and I will post some specific links for you.
Keep in mind that a router is not neccessarily a firewall. A lot of them rely upon NAT which only hides you, they can do nothing if someone knows that you are there. On Cisco, unfortunately I couldn't find any type of real details pertaining to how secure their systems are. I found the wording to be somewhat confusing and vague on the actual descriptions of their products and nothing to back it up.
Some of you have asked what firewall I purchased, here you go... http://www.3com.com/products/dsheets/400526_01.html#2
This site also tells you about DMZ, if you run a server, read about it here.
This is the results of my firewalls testing and certifications; http://www.icsa.net/html/communities/firewalls/certification/vendors/3com/officeconnect/fw25/30a_report.shtml

ssjDoh
12-06-00, 09:12 PM
Man!

DO you ever stop!! I think we taught you too much on how to use your computer!! LOL

Again, thanks for all the info http://www.speedguide.net/ubb/smile.gif

wileybot
12-06-00, 10:10 PM
Go Man Go!!!

JANDOENT
01-06-01, 08:34 AM
^bump^ http://www.speedguide.net/ubb/eek.gif http://www.speedguide.net/ubb/tongue.gif

------------------
Inquiring minds want to know...

JANDOENT
01-23-01, 02:48 PM
^ bump up for Mike

------------------
Inquiring minds want to know...

BrianR
01-25-01, 09:59 AM
Linksys routers are comspicuously absent from the list of tested and approved firewalls...

JANDOENT
01-25-01, 06:47 PM
<font face="Verdana, Arial" size="2">Originally posted by BrianR:
Linksys routers are comspicuously absent from the list of tested and approved firewalls...</font>

A Linksys router is not really a true firewall. It uses NAT (Network Address Translation) to hide your IP from the net. It will allow you to stealth tests, but it is not a true firewall...



------------------
Inquiring minds want to know...

dmsmed
01-27-01, 06:34 PM
LOL, I find the Cisco exam questions to be confusing and vague.

donald_k
01-27-01, 10:00 PM
Once Linux is on my box I am gonna take that Linky and hook my Linux box to the WAN port, the other computer ot the LAN port...and have fun....then all the holes will be kept to myself so I can toy with other Linky's, ....(remember the DMZ one everyone......closed port instead of stealth was reported, solved by setting false DMZ host)

keeper
01-29-01, 07:59 AM
J&D; Good info, there.

BrianR
01-29-01, 04:00 PM
Thanks for the reference. I just went out and bought a Zyxel P312 based on their recommendation. Excellent HW.

keeper
02-27-01, 07:00 AM
bump&gt;

dmsmed
02-27-01, 08:41 AM
I noticed Cisco is no where to be found.

Rookie
02-28-01, 08:22 PM
thanks for the informative post but when you say "Keep in mind that a router is not neccessarily a firewall. A lot of them rely upon NAT which only hides you, they can do nothing if someone knows that you are there."

if it hides my ip, how does the bad guy get my ip ("know i'm out there" if i'm using using the nat router? sorry for the lamer q here but just trying to learn. thanks for any help. rookie :confused: