OK fellow IT bods I need some help with a firewall.

I want to put a firewall on our ADSL connection at work but need to retain are static IP addresses. I.E. Im running a couple of servers on it.

I have had a look at some cheap servers but they apear to us NAT to translate all the IP through one IP, which aint a lot of help.

Any ideas guys?

Wont Zone Alarm work?

Trying to use it now but its a bit poo (in the free version) as you cant open a close ports at will.

+ Id have to install it on and addmin all the compter its installed on which is a pain and gets expensive if we buy the full version for all the computers.

Oh ok

Maybe try download.com

Might be somthing on there

Sorry cant help anymore

What about Symantec? I'm not sure about the price but it's very reliable and allows you to specify which ports you want open and what you want to allow through it.

You should be able to redirect any port requests made to the router (single static IP) to different ip address...

I.e. Port 8080 could be directed to your web server!

I think zone alram PRO does it,

Or you could buy a ADSL MODEM/ROUTER for about £100 and that'll do the job!

Look on that adsl guide thing, that'll tell you what you need!

A linux machine and just use iptables.
Cost = Price of PC.

OK its for work so im looking around the £100-£200 mark for a hardware one.. I though that was cheap?

Yup you could use a linux one as pointed out, butt hen again a dedicated bit of hardware will probably be more reliable, check the ASDSL guide (which I cant remember the address of) and I think theres a hardware section there, enjoy!

Use any old PC you have lying around (a 166 or 200 is ideal) and put Smoothwall on it. Smoothwall is a customised distro of Red Hat. Easy install, easy config, really reliable. Get it <a href=http://www.smoothwall.org>here</a>. Best of all, it's free, so if you've got an old machine doing bugger all, total cost = £0.

Its for work so i dont minf about cost to much... All i need is to be able to filter IPs and ports to our current IPs.

All the routers i've looked at use NAT through one IP.

'elp!

THe linux solution can either NAT or be transparent. That's certainly what I'd do.

There are loads of examples on the web on how to set up a firewall using iptables.

I imagine that's how smoothwall works.

Personally i'd prefer to do it all myself with a proper linux install, but that's jsut cos I'm a control freak and like to have full functionality should I need it.

Aye, thats what I would do if i was at home but..

i dont have a spare pooter at work
i do have the works creditcard on my desk :p

There are a few companies that make them, we have tried a few they all provide VPN access.

Netopia, very good and cheap.
Nexland?
Zywall
If you you a spare BT router i can talk you through wiping it and installing the proper firmware on it.

OK after much surfing im thinking of getting a Nexland ISB Pro400.

Any one ever used one of these?

I'd recommend something like a Watchguard SOHO 6. Fairly cheap, piece of p1ss to install, and works well also.