Adaptive Firewalls with VPN and Failover capability
We can build, install, and configure a highly effective
Linux Firewall for a fraction of the cost of specialized
hardware yet the Linux Firewall will be just as effective
and reliable. Better still, your Linux and Unix system administrators
already will know how to maintain it. Our custom designed
Firewall rules block virtually all common attacks and scans.
Our firewall has been banchmarked at triple the bandwidth
of Cisco Pix Firewall and one quarter the cost to deploy.
Both North American and European power can be accomodated.
Cracker Trap™ Adaptive Firewall
Supplement the basic Firewall
with our Cracker
Trap™ that operates as an Adaptive
Firewall. It detects when a cracker is trying
to break in and will lock him permanently out of your
network in a fraction of a second, forever eliminating him
problem. It then will notify you via email and/or pager
of the action taken. It even can generate audio and visual
alerts by playing any sound file on the speakers of the
Firewall system or on another system via a secure connection
and can flash the lights or other devices via an X10
When running Cracker
Trap™ at multiple locations, a cracker attacking one
location will be locked out of all your Cracker
Trap™ firewalls at the same time.
It is very customizable and can be programmed with a list
of trusted systems to avoid locking them out while still
alerting you if they are acting suspiciously and might be
compromised. It determines in an unspoofable way what system
has tried to attack your network so that the site's system
administrator can be notified to get the system shut down
or for use in legal actions. It is compatible with almost
all other IDS, Firewall, and anti-virus systems.
For clients with multiple Internet feeds, we can automatically
balance traffic between the two feeds for maximum performance.
Redundant Fault-tolerant Failover Capability
We offer a fault-tolerant
failover capability so that if your primary Internet connection
fails, all traffic will
be re-routed through a secondary connection. Internet
access from your desktop systems, VPN capability between
offices, and Internet access to your servers can be failed
over automatically. The failover will be transparent
to your VPN sessions. Typically, the primary connection would
be T1 and the secondary connection would be DSL or dialup.
Some clients have two separate T1 connections for redundancy.
An additional fault-tolerant failover capability is available
so that if a Firewall component fails, a switch to a backup
system will happen automatically almost immediately. Even
existing sessions will be preserved when this happens.
The Firewall can be further supplemented with automatic
24x7 monitoring of your network.
For less than $1000 we can have the Firewall
also do T1/E1 routing without having to spend thousands
of dollars and
too much time administering a Cisco Router. DSL interfaces
also are available at a low cost.
Virtual Private Network
A Virtual Private Network (VPN) capability
can be added to your organization's Linux Firewalls in
its different offices
as well as for telecommuters and travelers running Windows,
Macs, Linux or Unix. This allows secure communication between
your offices, enjoying the
low cost of communicating over the Internet with the
security of encrypted communication. Our VPN capability is
to your people and they do not need to do anything special
to enjoy it nor can they defeat it.