Firewall Reccomendations

Everyone seems to ask “what’s the best firewall for web servers” but of course the best answer depends on the configuration of the network or server that needs to be protected. I’ve got a dozen or so Class C Subnet’s and a large number of servers, I’m using multiple carriers coming into Cisco 2950’s and Intel 460T’s: one carrier or subnet per switch. I just plug the servers into whatever carrier I want them to use and etc.

I’m looking for a firewall solution that can handle multiple networks, I’d prefer a Linux OS type software solution I could install on a box with as many NIC’s as I have networks, but…how many NIC’s can you really get in one box, and what software supports over a dozen ‘Zones’. Trustix looks nice, but becomes prohibitively expensive once you add the zones up since it’s licensed per zone. I am considering switching to a Cisco 5000 or 7000 chassis and adding blades for Fast Ethernet, and then simply building VLANS instead of using a whole physical switch, so theoretically I could run all my traffic on one fiber connection through a Firewall with just two NICs (or ports, if we choose a hardware solution). I know some of you guys have bound to have grown through these problems, please recommend any solutions you used or researched.

 

 

 

 

Top