Windows Firewall (err *nix??)
I'm planning on co-locating 2 Windows machines sometime in the next couple months. One will be a SQL server and the other will be running IIS & Cold Fusion. Whats my best way to efficiently and cost effectively provide Firewall support for these two machines?
1.) Install a software firewall on both Windows machines
2.) Use a separate box and install Linux with IPChains or FreeBSD or something else?
3.) Find a colo facility that provides these services for a nominal charge
I would guess that ideally I would want a separate machine dedicated to security and firewalling. This situation would have a 100 Mbs connection from the Internet to the firewall, a 100 Mbs connection from the firewall to a switch, and then be connected to the co-located machines directly from the switch, right? But that means an extra colo box and a switch that I will need at this point in time... (as well as additional u's of space)
So back to my main question: Whats the best -and- most cost effective way of doing this? Will software firewalls work just as well as having a separate machine dedicated to firewalling and security?
Thanks for any help or pointers.
Andrew
