With all the growing threats in cyberspace, and with me taking the technical/security responsibility for a small CPA (Certified Public Accounting) firm, I was looking for a way to help harden the perimeter, and a way to offer some redundant scanning of web traffic. Previously I had a linksys BEFSR41 router at the gateway of a peer-to-peer network and had Symantec NIS 2005 installed on all the 6-7 PCs, along with other basic Windows XP security practices. I did some research and am evaluating IPCop and the Copfilter. The features I like are the proxying (squid), DNS proxying, and IDS (snort), and strong firewall of IPCop. The Copfilter adds the http scanning with HAVP (Http Anti Virus Proxy) which uses the Clamav virus library, and Privoxy to filter other internet junk. I just setup IPCop with the Copfilter add-on at home, and it seems to be running well, although the HAVP does have a little hit on bandwidth, (I think around 150-200 Kbps). Sooner or later, I am going to attempt to set that up behind the IPCop/Copfilter gateway to offer some telecommuting possibilities. Does anybody have any experience with IPCop, and or Copfilter, that could give any comments or suggestions or am I going down a dark deep tunnel? Sorry for the lengthy post.