Best Linux firewall
-
I've been using the open source Smoothwall Express for well over 10 years and love it. It's Linux based and quite configurable, but runs straight out of the box. It's never let me down. Download the ISO, boot an old PC with 2 NICs, tell it which NIC is on the internal side and which is on the external side and it installs. Once it is insalled, you logon to the web interface and use the GUI to configure it (such as opening ports, viewing logs, setting forwarding rules). We have it running as a virtual machine. There is a corporate edition, which isn't free but offers lots of additional features, like VPN. We used the corporate edition for a while but have now gone back to the free edition.
-
@lance said:
@scottalanmiller said:
If Linux is a necessity, Untangle is the most common product found in the SMB. But it tends to be too complex for its own good. We used to use SmoothWall long ago, they were good.
I've also heard a lot of good things about untangle.
Mostly, I think, that is because of their marketing. It's a rather weak product overall. Way too complicated and weird for its own good.
-
@Carnival-Boy NTG ran SmoothWall for years.
Definitely very easy to use. We had the commercial version back then. They are still around and offer free versions plus commercial support options too.
-
I will recommend pfSense as a firewall/router or Vyatta.
-
@JaredBusch said:
I will recommend pfSense as a firewall/router or Vyatta.
Is Vyatta open source still being maintained? Since Brocade bought them they seem to have gone silent.
-
We've been using ClearOS in our branch offices for almost 4 years. http://www.clearfoundation.com/Software/overview.html
Pretty straight forward and easy to manage using the web interface.
-
@ambarishrh said:
We've been using ClearOS in our branch offices for almost 4 years. http://www.clearfoundation.com/Software/overview.html
Pretty straight forward and easy to manage using the web interface.
I loved ClearOS prior to version 6. I gave up on it after that. -
I've heard good things about ClearOS but have not used it myself. Being built on a base of CentOS is nice.
-
@lance said:
I guess a good spot to start is do you have a budget or are you trying to use old hardware and free software to accomplish this.
Well i am trying to use old Hardware and free software
Good morning Everyone.. -
@Joyfano said:
@lance said:
I guess a good spot to start is do you have a budget or are you trying to use old hardware and free software to accomplish this.
Well i am trying to use old Hardware and free software
Good morning Everyone..Good morning. Pretty much all of the options here are free. So you have a lot to choose from.
-
@scottalanmiller said:
If Linux is a necessity, Untangle is the most common product found in the SMB. But it tends to be too complex for its own good. We used to use SmoothWall long ago, they were good.
We already have Untangle here,Yeah its was built by someone for us. I want to built another one so that i will have an idea from end to end.
-
Yeah.. hmm sure thanks for the option. i hope it will goes fine.working with this..
-
Good ones have already been mentioned—Smoothwall Express; pfSense; Untangle; ClearOS—yet a couple more:
- m0n0wall
- Sophos UTM (née Ataro)
See also—
-
How does mono stack up? Only one of these I've never touched.
-
Vyatta is actually the best of the lineup but the learning curve is ridiculous. And updates may not be forthcoming anymore for the free version.
-
Monowall is bare bones. Seems often comes up as one people used to use. Guessing still valid for minimal hardware.
One from the TechRadar link noted as the "winner" was... e-Box (http://www.ebox-platform.com/) built off Ubuntu. Haven't tried it, am skeptical, not a first choice, but keeping an open mind.
-
Don't know e-box at all. Need to take a look I guess. Any killer feature?
-
@scottalanmiller said:
How does mono stack up? Only one of these I've never touched.
I thought m0n0wall and pfSense were branches of the same ting at one point in the past. I may be misremembering things though.
-
@JaredBusch m0n0wall is FreeBSD at least like pfSense. That much I know.
-
@scottalanmiller said:
Vyatta is actually the best of the lineup but the learning curve is ridiculous. And updates may not be forthcoming anymore for the free version.
VyOS was forked out of it after the Brocade buyout. I have not really followed that though because my current use of Vyatta is all inside Ubiquiti hardware.