Hello,
I'm looking for an additional firewall appliance to go between my current router/firewall and my server. The specific purpose for this firewall appliance is to block the IP addresses of specific countries where hacking attempts and spambots frequently originate and legitimate connections to the server are rare. I know they originate from ALL countries, but some are much worse than others.
I don't really need advice on why this is a good (or bad) idea, it's what I want to do regardless. I'm just looking for recommendations for a hardware appliance that will do what I need, they way i want it done.
The ONLY appliances I am aware of at this time that meet my requirements are Watchguard Fireboxes such as the x500, x700 etc.
They would work, but are large, somewhat noisy and consume a good bit of power. The interface is good however.
Here are some of the desired properties I am looking for.....
1). Interface that allows me to conveniently add large numbers of IP address blocks in CIDR format or as Host ranges.
2). Low power consumption (ie no hard drive needed)
3). User interface that allows me to see live connections as they are allowed or denied similar to what Watchguard Fireboxes such as the x700 can do.
4). Quiet
Here is the visual interface for the Watchguard Firebox. I like this interface. I may end up using another Firebox if there's no other good / better alternatives.
PS...
I used to use IPBLOCK software on my server and it was excellent, but apparently on Linux, there is no version that works on the latest Ubuntu versions....to my shock.
I'm looking for an additional firewall appliance to go between my current router/firewall and my server. The specific purpose for this firewall appliance is to block the IP addresses of specific countries where hacking attempts and spambots frequently originate and legitimate connections to the server are rare. I know they originate from ALL countries, but some are much worse than others.
I don't really need advice on why this is a good (or bad) idea, it's what I want to do regardless. I'm just looking for recommendations for a hardware appliance that will do what I need, they way i want it done.
The ONLY appliances I am aware of at this time that meet my requirements are Watchguard Fireboxes such as the x500, x700 etc.
They would work, but are large, somewhat noisy and consume a good bit of power. The interface is good however.
Here are some of the desired properties I am looking for.....
1). Interface that allows me to conveniently add large numbers of IP address blocks in CIDR format or as Host ranges.
2). Low power consumption (ie no hard drive needed)
3). User interface that allows me to see live connections as they are allowed or denied similar to what Watchguard Fireboxes such as the x700 can do.
4). Quiet
Here is the visual interface for the Watchguard Firebox. I like this interface. I may end up using another Firebox if there's no other good / better alternatives.
PS...
I used to use IPBLOCK software on my server and it was excellent, but apparently on Linux, there is no version that works on the latest Ubuntu versions....to my shock.
Last edited: