whats a good firewall for win2k3?

Dark Atheist · March 16th, 2008

have been asked this by a friend who has win2k3...seeing as i don't use win2k3 i cant really say

**tdinc** · March 17th, 2008

Comodo Firewall Pro 2.4

just as a note, version 3.0 pro does not support win2k3
bottom of the page for download

http://www.personalfirewall.comodo.c..._firewall.html

for a free or paid software firewall hands down its the best. no other app can touch its security.

Dark Atheist · March 17th, 2008

thanks

edit: seems he forgot to tell me hes using x64 2k3 :/

**LordOfLA** · March 17th, 2008

anything external to the machine running windows

**X-Istence** · March 17th, 2008

Originally Posted by LordOfLA

anything external to the machine running windows

Amen.

**zeke_mo** · March 17th, 2008

Hardware firewall all the way

_kC_ · March 17th, 2008

is he actually using it as a 2k3 server (dns/ad/dhcp/smtp etc) ?

Dark Atheist · March 17th, 2008

yes - web ftp mail, he has an 8 port linksys router in the office

_kC_ · March 17th, 2008

if the router is set in nat mode that should cover most of the inbound protection, if any ports are forwarded, try to limit them to specific IP's within the router.
outpost 4.x runs on win2k3 (and have a 64bit version) although i wouldnt recomend it, he would do better to tighten up & configure the server properly, rather than trying to cover up open holes

i run a 2k3 std server but am confident in my config & routers inbound protection.
just make sure he disables any un-needed services/roles and keeps it up to date.

also its worth installing and configuring the Security Configuration Wizard
http://www.windowsecurity.com/articl...-2003-SP1.html

is he actually using the pc as a workstation aswel? (browsing on it etc)?

Dark Atheist · March 17th, 2008

from what i understand he wants to do is, is what i have done with my BSD box (thanks to lord geffy and X) using PF, but he wants to do this on windows, server will sit there and be used as ftp, web, and storage, all other connections to the router will mainly be internal (some inet use) but they want to lock it down so that only the server can be reached, and only for web/ftp - port 80 and 21 (poss pasv for ftp).

For the ftp he would like to use per ip restriction. - i am looking at ftp serve progs for him - may settle on gene6

_kC_ · March 17th, 2008

then he doesnt need a software firewall to lock that down. just configure the server properly
raidenftpd is about the best ftpd i have used. highly configurable, very secure

**X-Istence** · March 17th, 2008

I prefer to block out potential threats at the firewall level rather than at the service level. Relying on the service to block out IP's makes it to easy to leave a hole accessible because of misconfiguration or because of a hole in the service itself. If it is blocked before it even reaches that level, there is no further worries.

Dark Atheist · March 17th, 2008

can the built in firewall do what im after ?

_kC_ · March 17th, 2008

the router & the xp firewall can do a great job of inbound protection. couple that with a well configured/up to date OS and there is no need for a separate (software) firewall.
the only reason you would really need a 3rd party firewall is for outgoing application control.

3rd party firewalls can cause conflicts with drivers & slow down your network, steer clear on a 2k3 machine.

windows firewall can limit apps/ports to ip's/range's or even just limit to local subnet only , but the best place for that is within the router.
dont just forward ports, forward ports and lock down the ip's within the router.

windows firewall gets a LOT of flak, usually because people let their pc's get infected with spyware/virus's and the firewall getse asily bypass'd/disabled.
however on an up to date/configured server, spyware/virus's wont be an issue (unless a user logs in and browses on the server) so it would be pretty hard to get disabled.

Dark Atheist · March 17th, 2008

thanks

mfmjos · May 7th, 2008

I've been running Untangle for a bit now. It wouldn't run as a Windows app. Ideally you'd run it on a separate PC. You can run it as a virtual machine with VMware server (completely free solution). The VM method will require system resources. Untangle offers a good deal of security. Firewall functions, anti-virus, anti-spam, anti-phishing, etc. It's a pretty nice little package. Check it out.

movvadinesh · May 8th, 2008

I been using kaspersky internet security since a while.
I has a firewall in it which works well like any other firewall
Like whenever we open any website and if that website tries to do phisling on us it will bloch their ip address for a while.

For example : what we are facing with orkut.com now.

pimpindexter · May 8th, 2008

I would have to say BlackICE

This is the Update page.. Im not sure where the product page is.. But im sure you can find a torrent for it
http://www.iss.net/blackice/update_center/index.html

**tdinc** · May 8th, 2008

Originally Posted by pimpindexter

I would have to say BlackICE

This is the Update page.. Im not sure where the product page is.. But im sure you can find a torrent for it
http://www.iss.net/blackice/update_center/index.html

IBM will no longer support the product after September of this year.

so I would avoid it

March 16th, 2008	Top \| #1
Dark Atheist I never said I was nice Joined: April 2003 Location: In The Void Posts: 6,346 Blog Entries: 8 Reputation: 1877 Power: 0	whats a good firewall for win2k3? have been asked this by a friend who has win2k3...seeing as i don't use win2k3 i cant really say

March 17th, 2008	Top \| #2
tdinc █▄█ ▀█▄ █ Joined: December 2003 Location: Sterling Heights, MICHIGAN Posts: 3,505 Blog Entries: 19 Reputation: 2905 Power: 164	Re: whats a good firewall for win2k3? Comodo Firewall Pro 2.4 just as a note, version 3.0 pro does not support win2k3 bottom of the page for download http://www.personalfirewall.comodo.c..._firewall.html for a free or paid software firewall hands down its the best. no other app can touch its security.

March 17th, 2008	Top \| #3
Dark Atheist I never said I was nice Joined: April 2003 Location: In The Void Posts: 6,346 Blog Entries: 8 Reputation: 1877 Power: 0	Re: whats a good firewall for win2k3? thanks edit: seems he forgot to tell me hes using x64 2k3 :/

March 17th, 2008	Top \| #4
LordOfLA Godlike! Joined: February 2004 Location: Salisbury, Wiltshire, UK Posts: 7,015 Blog Entries: 5 Reputation: 4137 Power: 209	Re: whats a good firewall for win2k3? anything external to the machine running windows If HK-47 and GLaDOS had a child, the character they create would cause the video game world to overdose on awesome. -sheridanmovieguy: Dragon age forum user.

March 17th, 2008	Top \| #5
X-Istence * Joined: December 2001 Location: USA Posts: 6,490 Reputation: 2808 Power: 217	Re: whats a good firewall for win2k3? Originally Posted by LordOfLA anything external to the machine running windows Amen. My blog!

Latest News Posts

Latest Forum Posts

Latest Member Blogs

March 17th, 2008	Top \| #6
zeke_mo (value not set) Joined: August 2004 Location: Placerville, CA Posts: 1,963 Reputation: 1290 Power: 122	Re: whats a good firewall for win2k3? Hardware firewall all the way "My Mind is a swirling miasma of scintillating thoughts and turgid ideas" ~Sam Zeitgeist Money as Debt, educate yourself.

March 17th, 2008	Top \| #7
_kC_ OSNN Senior Addict Joined: January 2004 Posts: 514 Reputation: 270 Power: 106	Re: whats a good firewall for win2k3? is he actually using it as a 2k3 server (dns/ad/dhcp/smtp etc) ?

March 17th, 2008	Top \| #8
Dark Atheist I never said I was nice Joined: April 2003 Location: In The Void Posts: 6,346 Blog Entries: 8 Reputation: 1877 Power: 0	Re: whats a good firewall for win2k3? yes - web ftp mail, he has an 8 port linksys router in the office

March 17th, 2008	Top \| #9
_kC_ OSNN Senior Addict Joined: January 2004 Posts: 514 Reputation: 270 Power: 106	Re: whats a good firewall for win2k3? if the router is set in nat mode that should cover most of the inbound protection, if any ports are forwarded, try to limit them to specific IP's within the router. outpost 4.x runs on win2k3 (and have a 64bit version) although i wouldnt recomend it, he would do better to tighten up & configure the server properly, rather than trying to cover up open holes i run a 2k3 std server but am confident in my config & routers inbound protection. just make sure he disables any un-needed services/roles and keeps it up to date. also its worth installing and configuring the Security Configuration Wizard http://www.windowsecurity.com/articl...-2003-SP1.html is he actually using the pc as a workstation aswel? (browsing on it etc)?

March 17th, 2008	Top \| #10
Dark Atheist I never said I was nice Joined: April 2003 Location: In The Void Posts: 6,346 Blog Entries: 8 Reputation: 1877 Power: 0	Re: whats a good firewall for win2k3? from what i understand he wants to do is, is what i have done with my BSD box (thanks to lord geffy and X) using PF, but he wants to do this on windows, server will sit there and be used as ftp, web, and storage, all other connections to the router will mainly be internal (some inet use) but they want to lock it down so that only the server can be reached, and only for web/ftp - port 80 and 21 (poss pasv for ftp). For the ftp he would like to use per ip restriction. - i am looking at ftp serve progs for him - may settle on gene6

March 17th, 2008	Top \| #11
_kC_ OSNN Senior Addict Joined: January 2004 Posts: 514 Reputation: 270 Power: 106	Re: whats a good firewall for win2k3? then he doesnt need a software firewall to lock that down. just configure the server properly raidenftpd is about the best ftpd i have used. highly configurable, very secure

March 17th, 2008	Top \| #12
X-Istence * Joined: December 2001 Location: USA Posts: 6,490 Reputation: 2808 Power: 217	Re: whats a good firewall for win2k3? I prefer to block out potential threats at the firewall level rather than at the service level. Relying on the service to block out IP's makes it to easy to leave a hole accessible because of misconfiguration or because of a hole in the service itself. If it is blocked before it even reaches that level, there is no further worries. My blog!

March 17th, 2008	Top \| #13
Dark Atheist I never said I was nice Joined: April 2003 Location: In The Void Posts: 6,346 Blog Entries: 8 Reputation: 1877 Power: 0	Re: whats a good firewall for win2k3? can the built in firewall do what im after ?

March 17th, 2008	Top \| #14
_kC_ OSNN Senior Addict Joined: January 2004 Posts: 514 Reputation: 270 Power: 106	Re: whats a good firewall for win2k3? the router & the xp firewall can do a great job of inbound protection. couple that with a well configured/up to date OS and there is no need for a separate (software) firewall. the only reason you would really need a 3rd party firewall is for outgoing application control. 3rd party firewalls can cause conflicts with drivers & slow down your network, steer clear on a 2k3 machine. windows firewall can limit apps/ports to ip's/range's or even just limit to local subnet only , but the best place for that is within the router. dont just forward ports, forward ports and lock down the ip's within the router. windows firewall gets a LOT of flak, usually because people let their pc's get infected with spyware/virus's and the firewall getse asily bypass'd/disabled. however on an up to date/configured server, spyware/virus's wont be an issue (unless a user logs in and browses on the server) so it would be pretty hard to get disabled.

March 17th, 2008	Top \| #15
Dark Atheist I never said I was nice Joined: April 2003 Location: In The Void Posts: 6,346 Blog Entries: 8 Reputation: 1877 Power: 0	Re: whats a good firewall for win2k3? thanks

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
AM2 heatsink..whats good?	failurbydesign	Benchmarks & Performance	3	October 21st, 2007 9:07pm
Whats good software to contol user accounts in xp?	thepunkerguy	Windows Desktop Systems	1	December 29th, 2005 7:39am
Whats a good AMD mobo right now?	leedogg	General Hardware	23	September 25th, 2003 3:17pm
whats a good game site?	neoterixx	PC Gaming	12	July 17th, 2003 3:04pm
whats a good graphic card manufact.	the_music_man	Graphics Cards	16	April 19th, 2003 6:46pm

May 7th, 2008	Top \| #16
mfmjos OSNN Junior Addict Joined: May 2008 Posts: 3 Reputation: 0 Power: 0	Re: whats a good firewall for win2k3? I've been running Untangle for a bit now. It wouldn't run as a Windows app. Ideally you'd run it on a separate PC. You can run it as a virtual machine with VMware server (completely free solution). The VM method will require system resources. Untangle offers a good deal of security. Firewall functions, anti-virus, anti-spam, anti-phishing, etc. It's a pretty nice little package. Check it out.

May 8th, 2008	Top \| #17
movvadinesh OSNN Junior Addict Joined: May 2008 Posts: 19 Reputation: 0 Power: 47	Re: whats a good firewall for win2k3? I been using kaspersky internet security since a while. I has a firewall in it which works well like any other firewall Like whenever we open any website and if that website tries to do phisling on us it will bloch their ip address for a while. For example : what we are facing with orkut.com now.

May 8th, 2008	Top \| #18
pimpindexter Matrix Operator Joined: May 2008 Location: Sunny South Florida Posts: 48 Reputation: 30 Power: 46	Re: whats a good firewall for win2k3? I would have to say BlackICE This is the Update page.. Im not sure where the product page is.. But im sure you can find a torrent for it http://www.iss.net/blackice/update_center/index.html

May 8th, 2008	Top \| #19
tdinc █▄█ ▀█▄ █ Joined: December 2003 Location: Sterling Heights, MICHIGAN Posts: 3,505 Blog Entries: 19 Reputation: 2905 Power: 164	Re: whats a good firewall for win2k3? Originally Posted by pimpindexter I would have to say BlackICE This is the Update page.. Im not sure where the product page is.. But im sure you can find a torrent for it http://www.iss.net/blackice/update_center/index.html IBM will no longer support the product after September of this year. so I would avoid it