Security Basics mailing list archives

RE: Recommendable Windows firewall with NAT sought

From: "Michael Dunn" <MDunn () sscincorporated com>
Date: Fri, 15 Aug 2003 13:04:52 -0400

Sven,

A properly hardened NT box makes a decent bastion host. 

While not free, I have had good success with Microsoft's ISA server.  There are a few books I recommend if you go that 
route:

Securing Windows NT/2000 Servers Stefan Norberg - 1-56592-768-0
Configuring ISA Server 2000 - Dr. Thomas Shinder - 1-928994-29-6
ISA Server and Beyond Dr. Thomas Shinder - 1-931836-66-3

It does NAT by setting the client's default gateway to be that of the ISA box. Or, if using Windows clients, you can 
install the ISA client and then get full control of where and when they can surf.  

I ran Win2k and ISA on a Celeron 333a with 128MB - it was very slow to use the console, but our T1 line at 1.5 Mbps 
worked fine. It actually sped up some sites, as ISA can act as a cache as well.

Best of luck with your implementation!

-Mike

-----Original Message-----
From: Sven Riedel [mailto:sr () gimp org]
Sent: Friday, August 15, 2003 4:52 AM
To: security-basics () securityfocus com
Subject: Recommendable Windows firewall with NAT sought


Hi,
I'm more of a linux person and know my way around it pretty well. But
now I'm looking for good firewalling software for windows, which
incorporates NAT, just like iptables under linux. 
If the quality is good, I'd favour GPL/free-beer software over payware
(I guess my linux-years spoilt me ;)). Also, I'd like to hear of
firewalls which you wouldn't recommend (and the reason why - this isn't
a troll, nor am I trying to start a flamewar, I just don't know my way
around windows security software that well yet).

Regs,
Sven
-- 
Sven Riedel                      sr () gimp org
Liebigstr. 38 
30163 Hannover                  "Python is merely Perl for those who
                                 prefer Pascal to C" (anon)

---------------------------------------------------------------------------
----------------------------------------------------------------------------


---------------------------------------------------------------------------
----------------------------------------------------------------------------

Current thread:

Recommendable Windows firewall with NAT sought Sven Riedel (Aug 15)
- <Possible follow-ups>
- RE: Recommendable Windows firewall with NAT sought Michael Dunn (Aug 15)
- Re: Recommendable Windows firewall with NAT sought Tomas Wolf (Aug 16)