Download TrojanHunter Now
Free 30-day trial!
Latest TrojanHunter Version:
TrojanHunter 5.0
Order Now
License file delivered within minutes.
Welcome, Guest. Please Login or Register.
Nov 21st, 2008, 3:59pm
   Mischel Internet Security Forum
   Internet Security
   Firewalls (Moderators: Helena, Gavin_Coe, Magnus)
   Firewall Choice for Educational Users		 « Previous topic | Next topic »
Pages: 1 2 3  Reply Reply  Notify of replies Notify of replies   Send Topic Send Topic   Print Print
   Author  Topic: Firewall Choice for Educational Users  (Read 2176 times)
Ian
Stole All the Forum Stars
********



Good things come to those who wait ...

   


Posts: 2913
Firewall Choice for Educational Users
« on: Oct 16th, 2003, 11:12pm »		 Quote Quote  Modify Modify
Not sure why I capitalised all the words in the thread title...
 
This is a follow-on from a post begun in 'Internet Security - General' (http://www.misec.net/forum/board/General/1065977132)
 
To recap on the situation:-
I work as Network Manager (and ICT teacher) at a large UK high school (Morley High School www.morleyhigh.co.uk - it's one the local paper provided for us and isn't that up to date - the 'real' one is still WIP, and is somewhere on my to-do list)
 
I have between 20 and 100 laptop users who need to access their own home dial-up ISP by modem, plus my school network (by either cable or wireless LAN - the wireless is secured using 802.1x with a RADIUS server providing workstation and user certification). The actual final number depends on product price, with the max being around £1k/US$1.4k for the whole 100. I have been told about £350$500 would be fine for the 20 'essential' laptop users.
 
I need to equip the laptops with a decent firewall solution that can recognise the different connections and applying appropriate protection in each case. They all have Sophos AV running, but this is to prevent things like Blaster getting in to my work system using the laptops as a weak link.
 
So far, my investigations have show that most of the popular 'free' versions (ever the cheapskate - actually, I began looking before I was cleared to spend actual, real, folding money Wink) have one main problem - they provide a blanket coverage, which is to say all connections get the same treatment. Whilst it might not be obvious, this has proved impractical since certain network services need to get through the FW at work, but be blocked at home. These include the NT logon 'thingy' (technical usage of the word, you understand) - and if that gets blocked, things are pretty much a non-starter. That was on the wired LAN - let's not even start with the wireless system and all it's extra foibles...
 
The list of candidates boils down to this:
    *8Signs
    *Look'n'Stop
    *Sygate Pro
    *ZAPlus

Success is based on these principles, most important first:-
    *will it handle the different connections individually, especially the wireless?
    *can I get all 100 laptops in the budget
    *can I get the 20 essential users in for the lower figure, or at most for half-budget

I'd be grateful if anyone can provide information relating to suitability of these products, (or perhaps case studies), or can even point people this way so they can join in. Pricing models would be especially useful - the thing's got to work, but I've also got to afford it! IM me on that last issue if you prefer.
IP Logged
... but crap arrives pretty much straight away.
maxqnz
Newbie
*




Walekam salaam, noho ora mai!

   
WWW  

Posts: 26
Re: Firewall Choice for Educational Users
« Reply #1 on: Oct 16th, 2003, 11:54pm »		 Quote Quote  Modify Modify
I use and like Sygate Pro, and I know that it has a good trial period for testing. I would say that a decent 30 or 45 day test is the only way for you to get a reliable answer, to find out what works for you, and I'm sure that the vendors would be willing to accommodate you, as a potential volume customer.
IP Logged
ओ पालनहारे, तुमरे बिन हमरा कौनों नहीं
What's a pieriansipist?
Ian
Stole All the Forum Stars
********



Good things come to those who wait ...

   


Posts: 2913
Re: Firewall Choice for Educational Users
« Reply #2 on: Oct 17th, 2003, 12:09am »		 Quote Quote  Modify Modify
on Oct 16th, 2003, 11:54pm, maxqnz wrote:
I'm sure that the vendors would be willing to accommodate you, as a potential volume customer.
That's the impression I've been given. Plus, this is likely to be a new market direction, since schools are only just getting the kit, unlike businesses.
IP Logged
... but crap arrives pretty much straight away.
claire
Stole All the Forum Stars
********



carpe diem

   


Gender: female
 Posts: 3479
Re: Firewall Choice for Educational Users
« Reply #3 on: Oct 17th, 2003, 5:45am »		 Quote Quote  Modify Modify
Hi Ian,
 
For the price issue contact directly Frederic(the coder and owner of LnS).He is very helpful and will possibly find an
appropriate solution for you.
 
Regards
IP Logged
Claire
acheton
Original Gangster
******





   


Gender: male
 Posts: 1162
Re: Firewall Choice for Educational Users
« Reply #4 on: Oct 17th, 2003, 9:33am »		 Quote Quote  Modify Modify
If you look really carefully on the Ian's skools webpage you can see a picture of him. You need to look really closely because it is small, he's the one in the middle of the group in black in the snow...
IP Logged
"What success a man builds from his gifting can be destoyed in a moment because of his character."
ReGen
Veteran
*****




It's because we know, that we care.

   


Gender: male
 Posts: 685
Re: Firewall Choice for Educational Users
« Reply #5 on: Oct 17th, 2003, 2:22pm »		 Quote Quote  Modify Modify
on Oct 17th, 2003, 9:33am, acheton wrote:
If you look really carefully on the Ian's skools webpage you can see a picture of him. You need to look really closely because it is small, he's the one in the middle of the group in black in the snow...

 
Ahh! The next time I see somebody the height of an ant, dressed in black standing with a bunch of smaller people – I’ll know exactly who it is! But only if it’s snowing!   Smiley
IP Logged
--
ReGen
ReGen
Veteran
*****




It's because we know, that we care.

   


Gender: male
 Posts: 685
Re: Firewall Choice for Educational Users
« Reply #6 on: Oct 17th, 2003, 2:35pm »		 Quote Quote  Modify Modify
on Oct 16th, 2003, 11:12pm, Ian wrote:
So far, my investigations have show that most of the popular 'free' versions (ever the cheapskate - actually, I began looking before I was cleared to spend actual, real, folding money Wink) have one main problem - they provide a blanket coverage, which is to say all connections get the same treatment. Whilst it might not be obvious, this has proved impractical since certain network services need to get through the FW at work, but be blocked at home.

 
This feature has just been incorporated into NIS 2004. It automatically detects different networks and lets you assign different sets of firewall rules, which can be defined as ‘Work’, ‘Home’ etc. Unfortunately this information is absolutely no use to you as NIS is well outside of your predefined budget. But at least now you know!
IP Logged
--
ReGen
mozar
Highly Honored Mass-Poster
*******





   


Posts: 1524
Re: Firewall Choice for Educational Users
« Reply #7 on: Oct 17th, 2003, 3:31pm »		 Quote Quote  Modify Modify
   My  opinion  about  8Signs  are  here :
 
http://www.misec.net/forum/board/3PSoftware/1063031420
 
   The  thread  has  an interesting  link  with  a  brief  explanation about  8Signs  by its creator .
 
   But  ,  as  a  corporate  customer you have to contact the vendors , as you know .
 
 
P.S. : Ian , I  always tought you were taller and I  could never imagine  you with that  Mexican moustache .
 
IP Logged
Jamming
Stole All the Forum Stars
********




Remember when a Trojan was just for protection.

   


Gender: male
 Posts: 2039
Re: Firewall Choice for Educational Users
« Reply #8 on: Oct 17th, 2003, 4:55pm »		 Quote Quote  Modify Modify
I also want to add that ZAPlus comes with mailsafe, which protects your email from unwanted files being executed.  Which might be useful to you as far as limiting these other files, also you can add or subtract file extensions in your deployment.
« Last Edit: Oct 17th, 2003, 4:56pm by Jamming » IP Logged
Team Z Member

Servare cives, major est virtus patriae patri.
- Lucius Annaeus Seneca
I was born an American; I live an American; I shall die an American!
- Daniel Webster
8Signs
Newbie
*



I love YaBB 1G - SP1!

   
WWW  

Posts: 11
Re: Firewall Choice for Educational Users
« Reply #9 on: Oct 17th, 2003, 5:14pm »		 Quote Quote  Modify Modify
Hi Ian,
 
Thanks for looking at 8Signs Firewall.
Its pricing is in line with your budget before the 10% discount for educational purposes, so the price is right. If you have any questions about it, let me know.
 
James Grant james@
8Signs Ltd   8signs.com
IP Logged
acheton
Original Gangster
******





   


Gender: male
 Posts: 1162
Re: Firewall Choice for Educational Users
« Reply #10 on: Oct 17th, 2003, 10:09pm »		 Quote Quote  Modify Modify
Welcome to the forum James, we know Mozar thinks highly of you and your work. Good to have you on board Smiley
« Last Edit: Oct 17th, 2003, 10:10pm by acheton » IP Logged
"What success a man builds from his gifting can be destoyed in a moment because of his character."
Phant0m``
 Guest

Email
Re: Firewall Choice for Educational Users
« Reply #11 on: Oct 17th, 2003, 10:21pm »		 Quote Quote  Modify Modify   Remove Remove
on Oct 17th, 2003, 10:09pm, acheton wrote:
Welcome to the forum James, we know Mozar thinks highly of you and your work. Good to have you on board Smiley

 
Mozar isn't the only one....  Wink
IP Logged
8Signs
Newbie
*



I love YaBB 1G - SP1!

   
WWW  

Posts: 11
Re: Firewall Choice for Educational Users
« Reply #12 on: Oct 18th, 2003, 5:09am »		 Quote Quote  Modify Modify
Smiley
Hi All!
 
JG
IP Logged
Ian
Stole All the Forum Stars
********



Good things come to those who wait ...

   


Posts: 2913
Re: Firewall Choice for Educational Users
« Reply #13 on: Oct 18th, 2003, 11:53am »		 Quote Quote  Modify Modify
jeez - I knew it was a mistake to release that skiing trip photo...
 
Thanks for the help. I've grabbed the four contenders' trial versions, set up four identical laptops and will be seeing what they perform like during next week. Maybe I'll even sling them at four regular staff members after creating test dialup accounts on FreeServe or something...
 
The critical test is how the firewalls handle the 802.1x certification process (running on our wireless system). After all the hassle we've had just getting the APs to give them out and then listen to the response, I don't want to throw a spanner in the works with a software app that does the 802.1x equivalent of blocking the NT logon process!
 
As far as the budget is concerned - remember how good I was at talking them into a network upgrade...? Wink Grin
IP Logged
... but crap arrives pretty much straight away.
claire
Stole All the Forum Stars
********



carpe diem

   


Gender: female
 Posts: 3479
Re: Firewall Choice for Educational Users
« Reply #14 on: Oct 18th, 2003, 12:06pm »		 Quote Quote  Modify Modify
Hey Ian,
you're cute man Kiss
 
Good luck for your test week and have a great weekend Smiley Cheesy
IP Logged
Claire
Pages: 1 2 3  Reply Reply  Notify of replies Notify of replies   Send Topic Send Topic   Print Print

« Previous topic | Next topic »
Search
Members
Login
Register