View Profile
View Forum Posts
Private Message
Visit Homepage
Hey guys! I have my web server currently tucked in behind 2 routers that all have firewalls built in. I am looking to further increase my server security, and was wondering what would be a more secure, yet practical solution? A firewall built on another machine running software such as SmoothWall, or using a firewall on the server itself such as firestarter. Or is the two routers with firewalls sufficient and should I be more worried about code exploits rather than open and unattended ports?
Thanks in advance!
My Website: http://ttgale.com
My Website Uptime: http://img.uptimeprj.com/holastickbo…dee9bae2e2.png
My Server Specs: AMD Athlon X2 3800+, 2gb DDR2 RAM, 1.5TB HDD, Ubuntu 9.10
My Gaming PC: Intel Core 2 Duo 2.93ghz, 4gb DDR2 RAM, 9800GTX+
Two or three firewalls with the same/similar rules doesn’t buy you much. You would be better off to convert the second router/firewall into a dual-homed linux host running snort-inline. With that approach, you end up with a firewall on the front door dropping all the traffic you don’t allow, and snort inspecting what you allow through for nasties.
DaveM
View Profile
View Forum Posts
Private Message
Visit Homepage
|
|
Well, my routers are actually like brand name ones. My modem has one built in, its a D-Link. I then run the net connection from there to one of those flashy belkin wireless routers, this also has a firewall.
Thanks for the info though, I am going to look into snort, and see how it goes!
My Website: http://ttgale.com
My Website Uptime: http://img.uptimeprj.com/holastickbo…dee9bae2e2.png
My Server Specs: AMD Athlon X2 3800+, 2gb DDR2 RAM, 1.5TB HDD, Ubuntu 9.10
My Gaming PC: Intel Core 2 Duo 2.93ghz, 4gb DDR2 RAM, 9800GTX+
Posting Permissions
Reply With Quote
Bookmarks