Firewall appliance vrs router in a small network

Firewall appliance vrs router in a small network: Posted by Bucky on November 14th, 2007; I am going to be helping a company that is a 8 user workgroup currently
convert to a new server with SBS 2003. I will have two nic's in the server
one for the wild side and the other for internal network. I am having the ISP
put in a static IP add, currently they have a dynamic ip with the router
acting as the dhcp server. My question is whether I should spend the extra
money for a firewall appliance to replace the current router, and if so can
you recommend any for this size network. They have light to med internet
usage and will be using remote desktop for two pc's that work remotely
sometimes, they will be using remote desktop when new server is installed,
they are currently happy with the speed.

I'm also wondering if it is possible to turn a netgear consumer grade router
into a access point by just turning off the dhcp and firewall functions on
the router... will be needing a access point on the internal network
--
Thanks for your help
Bucky; Posted by Osprey232 on November 15th, 2007; "Bucky" wrote:; Posted by Osprey232 on November 15th, 2007; Bucky

As you are using 2 NIC's in your SBS box a standard ADSL/modem router with
port forwarding will do the job for you. If redundancy is an issue I normally
supply two of these "cheap" routers (both configured) so you merely have to
swap the faulty one out if a problem occurs. Buying 2 of these is still way
cheaper than a firewall appliance.

I would only move to a more advanced appliance if your customer wants
content filtering, gateway Anti Virus etc. Form a security point of view I
have several customers with this exact setup and they are happy and it works
fine.

I have a few customers with Sonicwall TZ series firewall's purely for the
content filtering and reporting features as I am not a fan of ISA.

Not entirely sure of your AP scenario - I think the router "dumbed" down
would create a double NAT situation which would possibly play havoc with your
inbound mail to Exchange.

Hope this helps.
Osprey232

"Bucky" wrote:; Posted by Kevin Weilbacher on November 15th, 2007; if you are not using ISA on your SBS box, then yes, I would put a better
suited firewall solution in. The Sonicwall TZ170 type of product, perhaps.

--
Kevin Weilbacher [SBS MVP]
"The days pass by so quickly now, the nights are seldom long"
*

"Bucky" <Bucky@discussions.microsoft.com> wrote in message
news:B2E8EEF6-D1C1-4C39-9FB5-279CA07F1E00@microsoft.com...; Posted by M3 PostMasters on February 7th, 2008; I would also not recommend using the router as a WAP as you will face
natting issues. Linksys WAP54G's are cheap, you can purchase one of those
and it will work amazingly well.

--
M3 PostMasters
M3PostMasters@nospam.m3tg.com
M3 Technology Group
www.m3tg.com

"Kevin Weilbacher" <kw@DELETEkwsupport.com> wrote in message
news:817D93ED-B673-409B-ACF2-07692DF52C55@microsoft.com...

Similar Posts

looking for router/appliance for gateway av, ips, content filter etc (Routers) by Buggs1a
The Sidewinder G2 Security Appliance includes the only firewall that has never had a CERT advisory posted against it (Computer Security) by Ipeefreely
FS - proventia M10 network appliance (Computer Security) by Al Dente
Small Business Router/Firewall Recomendations (Internet & Broadband) by jaime
Firewall on small network (Internet & Broadband) by Jaime