I’m a Junior network admin at my company of about 10 people. We have a windows 2000 domain network connected to the net via dsl. The netopia router we’re using has a built-in “basic Firewall” but doesnt really seem to cover the needs of my company. We are a contractor for the Department of state and therefore have highly sensitive yet declassified information on our network. what would be our best bet for a firewall/network intrusion detection?
BTW – explaining the need to purchase new equipment to my boss is like teaching an 80 year old to bungee jump…they’d just rather not. needless to say, under $400 is my best bet.
BBTW. here is a copy of the “basic firewall” rules my router has…do you have any recommendations for other rules that may help? the only thing I need to get into the network with is my VPN using “MS Win2k routing and remote access”
–SRC—-DST—-PROT—-SRCPORT–DSTPORT–ON–FWD
0.0.0.0 0.0.0.0 TCP NC =2000 Yes No
0.0.0.0 0.0.0.0TCP NC =6000 Yes No
0.0.0.0 0.0.0.0 ICMP =8 NC Yes No
0.0.0.0 0.0.0.0 ICMP NC NC Yes Yes
0.0.0.0 0.0.0.0 TCP NC >1023 Yes Yes
0.0.0.0 0.0.0.0 UDP NC >1023 Yes Yes