Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Unique Firewall Problem
New Posts  All Forums:Forum Nav:

Unique Firewall Problem

post #1 of 8
Thread Starter 
Ok... Well, I work for a small school. A lab of 30 computers and about 20 teachers. I need to secure it. We plan on switching from our managed fiber connection (which has problems) to a comcast business line(12/2). I need a firewall and content filter.

I was thinking about the TZ 100 or 200. My budget is low... probably $500 bucks or less... preferably less. I was wondering if this unit is enough for our needs. Most people just check E-mail and do browsing. Downloading on occasion.

http://www.sonicwall.com/us/products/TZ_100.html
http://www.sonicwall.com/us/products/TZ_200.html

I was thinking about going the open source route if this is not enough...

Thanks... I don't know much about firewalls so any input would be helpful...
DARTH
(19 items)
 
  
CPUMotherboardGraphicsGraphics
Intel 4770K Gigabyte Z87X-UD4H Diamond R9 290X Asus R9 290 Reference 
RAMHard DriveHard DriveHard Drive
Corsair Vengeance CMZ8GX3M2A1866C9 Intel 320 Series SSD Seagate 1 Tb 7.2k WD Blue 
Optical DriveCoolingCoolingCooling
2x Liteon 52x 32x 52x XSPC RASA 240RS kit XSPC RX480 v2 EK Full Cover R9 290X waterblocks 
OSMonitorKeyboardPower
Windows 7 64bit Ultimate Dell P2715Q Ducky Zero DK2108 (Red Switches) Corsair RM1000 
CaseMouseMouse Pad
Thermaltake Core x9 Micro$oft X5 Desk 
  hide details  
Reply
DARTH
(19 items)
 
  
CPUMotherboardGraphicsGraphics
Intel 4770K Gigabyte Z87X-UD4H Diamond R9 290X Asus R9 290 Reference 
RAMHard DriveHard DriveHard Drive
Corsair Vengeance CMZ8GX3M2A1866C9 Intel 320 Series SSD Seagate 1 Tb 7.2k WD Blue 
Optical DriveCoolingCoolingCooling
2x Liteon 52x 32x 52x XSPC RASA 240RS kit XSPC RX480 v2 EK Full Cover R9 290X waterblocks 
OSMonitorKeyboardPower
Windows 7 64bit Ultimate Dell P2715Q Ducky Zero DK2108 (Red Switches) Corsair RM1000 
CaseMouseMouse Pad
Thermaltake Core x9 Micro$oft X5 Desk 
  hide details  
Reply
post #2 of 8
If you don't know much about firewalls, then I'd stick with something like the sonicwall. If you go the open-source route, know that you are getting a much more powerful firewall for zero dollars, but that doesn't mean its free. The maintenance and configuration, especially in an academic environment where you don't really trust all internal users, will easily consume you if you don't have experience.

Watchguard also makes pretty easy-to-use firewalls, but I don't know if they have anything in that price range.
post #3 of 8
sonicwall tz 210 is what I would put in for a client with that kind of set up.

I suppose a tz 200 would get the job done fine though, if its only 20 concurrent users doing normal office stuff browsing/email on a 12mbit down pipe I dont think your really gonna need the extra processing power/ram.

They both should have the same content management features.

You wont really see any less throughput since its only a 12/2 connection.


Also, I wouldn't use open source in a production environment that demanded up time either. I know they work well, but if your house goes down its an annoyance, if your office goes down, its bad news.
Edited by rmp459 - 11/2/11 at 12:51pm
    
CPUMotherboardGraphicsRAM
5960x @ 4.4ghz (1.19v) evga x99 micro2 (2) evga gtx 980 ti hybrid 32gb hyperx 2666mhz 
Hard DriveCoolingOSMonitor
samsung 950 pro 512gb NVMe M.2 ssd ek everything win 10 xl2430t / u2515h (x2) / u2913wm 
KeyboardPowerCaseMouse
cm novatouch w/ pbt caps. evga 1200 p2 lian li pc-9f nixeus revel 
Mouse PadAudioOther
steelseries qck heavy gustard U12/X12 -> H10/Lyr presonus 22vsl > mxl770 (mic) 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
5960x @ 4.4ghz (1.19v) evga x99 micro2 (2) evga gtx 980 ti hybrid 32gb hyperx 2666mhz 
Hard DriveCoolingOSMonitor
samsung 950 pro 512gb NVMe M.2 ssd ek everything win 10 xl2430t / u2515h (x2) / u2913wm 
KeyboardPowerCaseMouse
cm novatouch w/ pbt caps. evga 1200 p2 lian li pc-9f nixeus revel 
Mouse PadAudioOther
steelseries qck heavy gustard U12/X12 -> H10/Lyr presonus 22vsl > mxl770 (mic) 
  hide details  
Reply
post #4 of 8
Thread Starter 
Quote:
Originally Posted by Nick2253 View Post
If you don't know much about firewalls, then I'd stick with something like the sonicwall. If you go the open-source route, know that you are getting a much more powerful firewall for zero dollars, but that doesn't mean its free. The maintenance and configuration, especially in an academic environment where you don't really trust all internal users, will easily consume you if you don't have experience.

Watchguard also makes pretty easy-to-use firewalls, but I don't know if they have anything in that price range.
I have setup squid and would go that route for content filtering (dans guardian)

probably smoothwall...

I just feel like most these companies try to take the school's money and run... though I know it's an important thing for a school to have these things...
DARTH
(19 items)
 
  
CPUMotherboardGraphicsGraphics
Intel 4770K Gigabyte Z87X-UD4H Diamond R9 290X Asus R9 290 Reference 
RAMHard DriveHard DriveHard Drive
Corsair Vengeance CMZ8GX3M2A1866C9 Intel 320 Series SSD Seagate 1 Tb 7.2k WD Blue 
Optical DriveCoolingCoolingCooling
2x Liteon 52x 32x 52x XSPC RASA 240RS kit XSPC RX480 v2 EK Full Cover R9 290X waterblocks 
OSMonitorKeyboardPower
Windows 7 64bit Ultimate Dell P2715Q Ducky Zero DK2108 (Red Switches) Corsair RM1000 
CaseMouseMouse Pad
Thermaltake Core x9 Micro$oft X5 Desk 
  hide details  
Reply
DARTH
(19 items)
 
  
CPUMotherboardGraphicsGraphics
Intel 4770K Gigabyte Z87X-UD4H Diamond R9 290X Asus R9 290 Reference 
RAMHard DriveHard DriveHard Drive
Corsair Vengeance CMZ8GX3M2A1866C9 Intel 320 Series SSD Seagate 1 Tb 7.2k WD Blue 
Optical DriveCoolingCoolingCooling
2x Liteon 52x 32x 52x XSPC RASA 240RS kit XSPC RX480 v2 EK Full Cover R9 290X waterblocks 
OSMonitorKeyboardPower
Windows 7 64bit Ultimate Dell P2715Q Ducky Zero DK2108 (Red Switches) Corsair RM1000 
CaseMouseMouse Pad
Thermaltake Core x9 Micro$oft X5 Desk 
  hide details  
Reply
post #5 of 8
The question comes down to determining the lowest total cost to the school. Remember that with that initial outlay comes tech support and service, something you don't get with Smoothwall (and I'd recommend PFsense over Smoothwall if you go that route).

What is the lost opportunity cost for the school if you spend a lot of your time troubleshooting the firewall vs. paying for a more trouble-free solution?
post #6 of 8
Thread Starter 
Quote:
Originally Posted by rmp459 View Post
sonicwall tz 210 is what I would put in for a client with that kind of set up.

I suppose a tz 200 would get the job done fine though, if its only 20 concurrent users doing normal office stuff browsing/email on a 12mbit down pipe I dont think your really gonna need the extra processing power/ram.

They both should have the same content management features.

You wont really see any less throughput since its only a 12/2 connection.


Also, I wouldn't use open source in a production environment that demanded up time either. I know they work well, but if your house goes down its an annoyance, if your office goes down, its bad news.
I think I'm going to try to sell them on the TZ 210...

I agree with your last statement...

Quote:
Originally Posted by Nick2253 View Post
The question comes down to determining the lowest total cost to the school. Remember that with that initial outlay comes tech support and service, something you don't get with Smoothwall (and I'd recommend PFsense over Smoothwall if you go that route).

What is the lost opportunity cost for the school if you spend a lot of your time troubleshooting the firewall vs. paying for a more trouble-free solution?
Lol I'm contract so I don't think it matters to them... but it sure matters to me!
Edited by AMDMAXX - 11/2/11 at 12:59pm
DARTH
(19 items)
 
  
CPUMotherboardGraphicsGraphics
Intel 4770K Gigabyte Z87X-UD4H Diamond R9 290X Asus R9 290 Reference 
RAMHard DriveHard DriveHard Drive
Corsair Vengeance CMZ8GX3M2A1866C9 Intel 320 Series SSD Seagate 1 Tb 7.2k WD Blue 
Optical DriveCoolingCoolingCooling
2x Liteon 52x 32x 52x XSPC RASA 240RS kit XSPC RX480 v2 EK Full Cover R9 290X waterblocks 
OSMonitorKeyboardPower
Windows 7 64bit Ultimate Dell P2715Q Ducky Zero DK2108 (Red Switches) Corsair RM1000 
CaseMouseMouse Pad
Thermaltake Core x9 Micro$oft X5 Desk 
  hide details  
Reply
DARTH
(19 items)
 
  
CPUMotherboardGraphicsGraphics
Intel 4770K Gigabyte Z87X-UD4H Diamond R9 290X Asus R9 290 Reference 
RAMHard DriveHard DriveHard Drive
Corsair Vengeance CMZ8GX3M2A1866C9 Intel 320 Series SSD Seagate 1 Tb 7.2k WD Blue 
Optical DriveCoolingCoolingCooling
2x Liteon 52x 32x 52x XSPC RASA 240RS kit XSPC RX480 v2 EK Full Cover R9 290X waterblocks 
OSMonitorKeyboardPower
Windows 7 64bit Ultimate Dell P2715Q Ducky Zero DK2108 (Red Switches) Corsair RM1000 
CaseMouseMouse Pad
Thermaltake Core x9 Micro$oft X5 Desk 
  hide details  
Reply
post #7 of 8
Plus depending on your office space/size of the area, you can deploy sonicpoints (wireless access points) that are managed from the tz200/210.

I believe the tz200 can do like 2 sonicpoints and the tz210 can do like 8 or 16... id have to look it up.

Sounds like they wont be able to afford picking up 2 firewalls for a failover (x1/x2), but being able to pitch a wifi upgrade that is managed through the firewall in 3-6 months time could look good for you.
    
CPUMotherboardGraphicsRAM
5960x @ 4.4ghz (1.19v) evga x99 micro2 (2) evga gtx 980 ti hybrid 32gb hyperx 2666mhz 
Hard DriveCoolingOSMonitor
samsung 950 pro 512gb NVMe M.2 ssd ek everything win 10 xl2430t / u2515h (x2) / u2913wm 
KeyboardPowerCaseMouse
cm novatouch w/ pbt caps. evga 1200 p2 lian li pc-9f nixeus revel 
Mouse PadAudioOther
steelseries qck heavy gustard U12/X12 -> H10/Lyr presonus 22vsl > mxl770 (mic) 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
5960x @ 4.4ghz (1.19v) evga x99 micro2 (2) evga gtx 980 ti hybrid 32gb hyperx 2666mhz 
Hard DriveCoolingOSMonitor
samsung 950 pro 512gb NVMe M.2 ssd ek everything win 10 xl2430t / u2515h (x2) / u2913wm 
KeyboardPowerCaseMouse
cm novatouch w/ pbt caps. evga 1200 p2 lian li pc-9f nixeus revel 
Mouse PadAudioOther
steelseries qck heavy gustard U12/X12 -> H10/Lyr presonus 22vsl > mxl770 (mic) 
  hide details  
Reply
post #8 of 8
Thread Starter 
We already have 5 very large switches and 5 Wireless Access Points...
DARTH
(19 items)
 
  
CPUMotherboardGraphicsGraphics
Intel 4770K Gigabyte Z87X-UD4H Diamond R9 290X Asus R9 290 Reference 
RAMHard DriveHard DriveHard Drive
Corsair Vengeance CMZ8GX3M2A1866C9 Intel 320 Series SSD Seagate 1 Tb 7.2k WD Blue 
Optical DriveCoolingCoolingCooling
2x Liteon 52x 32x 52x XSPC RASA 240RS kit XSPC RX480 v2 EK Full Cover R9 290X waterblocks 
OSMonitorKeyboardPower
Windows 7 64bit Ultimate Dell P2715Q Ducky Zero DK2108 (Red Switches) Corsair RM1000 
CaseMouseMouse Pad
Thermaltake Core x9 Micro$oft X5 Desk 
  hide details  
Reply
DARTH
(19 items)
 
  
CPUMotherboardGraphicsGraphics
Intel 4770K Gigabyte Z87X-UD4H Diamond R9 290X Asus R9 290 Reference 
RAMHard DriveHard DriveHard Drive
Corsair Vengeance CMZ8GX3M2A1866C9 Intel 320 Series SSD Seagate 1 Tb 7.2k WD Blue 
Optical DriveCoolingCoolingCooling
2x Liteon 52x 32x 52x XSPC RASA 240RS kit XSPC RX480 v2 EK Full Cover R9 290X waterblocks 
OSMonitorKeyboardPower
Windows 7 64bit Ultimate Dell P2715Q Ducky Zero DK2108 (Red Switches) Corsair RM1000 
CaseMouseMouse Pad
Thermaltake Core x9 Micro$oft X5 Desk 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security
Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Unique Firewall Problem