Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Do I really need a dedicated Firewall 1

Status
Not open for further replies.
seaport

seaport

MIS
Jan 5, 2000
923
US
My office network contains about 10 workstations, 1 file server and 1 SQL Server. The network is behind a LinkSys router, which also serves as the firewall. Now I plan to add a web server and expect small traffic (less than 200 visits a day). The web application on the web serer is not mission-critical and all money transactions will be handled using Paypal.

My questions is: do I need a Firewall server or I can just keep using the existing router? Someone recommended me adding a switch with a lot cache for better performance.

What should I do? Actually the real question is, what are key factors determining using a dedicated firewall rather than a router?

Thanks in advance.
 
Sort by date Sort by votes
Really if it's a business i would not recommend anything less then an ASA5505, but if you don't want to fork out 400$ for awesome security you little linksys should be ok. Just know that there are tons of undocumented vulnerabilities on them. And if any serious sustained traffic starts coming through (3+mbps) you will see some performance degradation.

Also this makes no sense:
"Someone recommended me adding a switch with a lot cache for better performance."

A switch switches. The types of caches contained in one do not apply here and are not being referenced correctly. I would not take advice from that person.


CCNP
 
Upvote 0 Downvote
Thanks for the reply.

I am OK for a security device under $1k. The quotes I got for a firewall server were above 5k.

Another question: do I need something like ASA5505 if there is no web server involved? In that situation, all I need to do is to make sure all ports are closed, tested using The router becomes a dumb box just for Internet access.

In other words, is the Web server a determining factor for getting a security device?
 
Upvote 0 Downvote
The asa receives a perfect stealth right out of the box from grc.com-<< but that's irrelevant.

The ASA is good device to have no matter what you choose.
But you might need to hire someone to set it up.

CCNP
 
Upvote 0 Downvote
I probably will be the person to set it up. What kind of knowledge or credential I need to set up an ASA box? Could you give me some resource links?

Thanks again.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Sameer258
  • Locked
  • Question
Need Help to Find ip and mac address with email who one open my email
Replies
0
Views
318
Sameer258
Sameer258
PauS0n
  • Locked
  • Question
Need Help On Cisco ASA 5512 Running Version 9
Replies
0
Views
98
PauS0n
PauS0n
XLNTech1
  • Locked
  • Question
iptables port forwarding
Replies
0
Views
280
XLNTech1
XLNTech1
Sparrow4
  • Locked
  • Question
Configure Avaya IPO R11 / VM Pro + Office365 or Exchange for voicemail to email
Replies
2
Views
333
Johnkite
Johnkite
TheFireman2
  • Locked
  • Question
Help with Watchguard Firebox M200 setup as a TMG 2010 replacement with ASA 5515 as main firewall
Replies
1
Views
125
hairlessupportmonkey
hairlessupportmonkey

Part and Inventory Search

Sponsor

Back
Top