Navigation

    ML
    • Register
    • Login
    • Search
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups

    Proxy vs Hardware Firewall

    IT Discussion
    7
    11
    1461
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • Lakshmana
      Lakshmana last edited by

      What is the difference between he Proxy server and Hardware Firewall?
      In my office we are using the proxy servers IPs to access the internet but there are some hardware firewall also present.
      Which one is best to control whole systems in one office?

      scottalanmiller 1 Reply Last reply Reply Quote 0
      • travisdh1
        travisdh1 last edited by

        TL:DNR Both, you want both.

        Proxy servers can be used for a number of different things. Most common are local cache for popular sites and controlling what websites and/or services are made available to users. Hardware firewalls should be doing things like SPI (statefull packet inspection), IPS (intrusion prevention system), IDS (intrusion detection system), etc.

        1 Reply Last reply Reply Quote 0
        • scottalanmiller
          scottalanmiller @Lakshmana last edited by

          @Lakshmana said:

          What is the difference between he Proxy server and Hardware Firewall?

          They are not overlapping things so it is not about what is different, it is about "what is each of them?"

          Firewall is the thing that blocks communications from coming through between networks. This is a layer 4 device and will block by port or address. It's a pure security device.

          Proxy is a server that does things on behalf of another machine. A standard proxy is a web proxy used for many machines to contact that then talks to web servers on their behalf. This is used for security, monitoring, caching and more. A proxy is useless for security unless you also have a firewall.

          1 Reply Last reply Reply Quote 0
          • scottalanmiller
            scottalanmiller last edited by

            Both are broad concepts. There are reverse proxies too that sit in front of web servers. Jump Servers are a form of proxy.

            1 Reply Last reply Reply Quote 0
            • wrx7m
              wrx7m last edited by

              UTM can combine these things and others into a single physical appliance or a virtual one.

              JaredBusch 1 Reply Last reply Reply Quote 0
              • JaredBusch
                JaredBusch @wrx7m last edited by

                @wrx7m said:

                UTM can combine these things and others into a single physical appliance or a virtual one.

                I severely dislike UTM devices. I prefer things to be on their own box.

                dafyre scottalanmiller coliver 3 Replies Last reply Reply Quote 2
                • dafyre
                  dafyre @JaredBusch last edited by

                  @JaredBusch said:

                  @wrx7m said:

                  UTM can combine these things and others into a single physical appliance or a virtual one.

                  I severely dislike UTM devices. I prefer things to be on their own box.

                  There's something to be said for that. Out of 2 UTM appliances (Fortigate and commercial smoothwall setup), I was never able to enable all of the features or traffic would come to a screeching halt -- even if the boxes were "appropriately sized" for our network.

                  scottalanmiller 1 Reply Last reply Reply Quote 2
                  • wrx7m
                    wrx7m last edited by

                    I like my Sophos UTM SG 210. For an SMB, this thing is great!

                    1 Reply Last reply Reply Quote 0
                    • scottalanmiller
                      scottalanmiller @dafyre last edited by

                      @dafyre said:

                      @JaredBusch said:

                      @wrx7m said:

                      UTM can combine these things and others into a single physical appliance or a virtual one.

                      I severely dislike UTM devices. I prefer things to be on their own box.

                      There's something to be said for that. Out of 2 UTM appliances (Fortigate and commercial smoothwall setup), I was never able to enable all of the features or traffic would come to a screeching halt -- even if the boxes were "appropriately sized" for our network.

                      Netgear, too. Their ProSecure slows you down a LOT.

                      1 Reply Last reply Reply Quote 0
                      • scottalanmiller
                        scottalanmiller @JaredBusch last edited by

                        @JaredBusch said:

                        @wrx7m said:

                        UTM can combine these things and others into a single physical appliance or a virtual one.

                        I severely dislike UTM devices. I prefer things to be on their own box.

                        Same here.

                        1 Reply Last reply Reply Quote 0
                        • coliver
                          coliver @JaredBusch last edited by

                          @JaredBusch said:

                          @wrx7m said:

                          UTM can combine these things and others into a single physical appliance or a virtual one.

                          I severely dislike UTM devices. I prefer things to be on their own box.

                          I learned this the hard way. Would never go back to a UTM now.

                          1 Reply Last reply Reply Quote 0
                          • First post
                            Last post