• Services    
  • Artwork
  • Domain Registration
    • terms
  • Internet Servers
    • Web
    • E-mail
    • DNS
    • FTP
      • active vs passive
    • Lists
      • MailMan
        • e-mail commands
    • Firewalls
    • Special
    • Terms & Conditions
  • Publications
    • tip: dashes
  • SSL Certs
  • Website Design
    • terms
    • tips
      • colors
      • symbols
      • validation
      • faded lines
      • dynamic menus
      • sepia tone
      • dynamic menus
      • mediaplayer
• Marketing    
  • Advertising
    • Mailings
    • Periodicals
    • Websites
  • Publishing
  • website promotion
    • tips
    • bait webpages
    • submissions
      • tips
    • tracking
• E-commerce    
• Development    
• Connectivity    
  • dialup nationwide
    • access numbers
    • e-mail
    • news
    • macintosh
    • win9x
  • dedicated hosts
  • virtual hosts
  • bandwidth tests
• Us    
  • location
  • policies
    • aup
    • privacy
    • refund
    • termination

Firewall Service, Using a computer with OpenBSD to protect your network.

This service is not available for all customers and situations.  Please contact us to discuss availability because physical access to the computer performing the services may be required.  An example of application of this service is for our customers that receive Internet connectivity from our facilities or are within our immediate support area.

A firewall is a system designed to prevent unauthorized access to or from a private network.  Firewalls are frequently used to prevent unauthorized users from accessing private networks connected to the Internet, especially intranets.  Firewalls can be implemented in both hardware and software or a combination.  For firewalls we prefer to use a dependable computer with multiple network cards and the OpenBSD  operating system properly configured.  OpenBSD has a reputation of good support in the open source community, full revisions twice a year, secure by default, packet filtering built into the kernel, and encryption by default.  For purpose of this document we describe several firewall techniques:

Packet filter:  
Looks at each packet entering or leaving the network and accepts or rejects it based on administrator defined rules. Packet filtering is fairly effective and transparent to users but is difficult to configure for the novice.

Proxy server:
Can be setup to intercepts traffic at entering and leaving the network for specific applications.  For example it is common practice for web servers to use port 80 for unencrypted traffic and the firewall can be setup to pass all traffic for port 80 to the proxy server so it can filter or block according to administrator defined rules, and require users behind firewall to have their web browsers use port 8080 on the proxy server to view websites.

Circuit-level gateway:
Applies security mechanisms when a connection (TCP or UDP) is established.  Once the connection has been made packets can flow between the hosts without further checking.

Application gateway:
Applies security mechanisms to specific applications, such as FTP and telnet servers.  It can be very effective if implemented properly but can impose performance degradation and the effort may be negated if bypassed by client and server.

 

Pricing

Packet filtering and proxy server configurations may suffice for typical situations.  Other techniques like circuit level and application require more labor and customization which may not be necessary.  For purposes of a baseline price we are pricing a firewall using packet filtering as the primary technique.

Because updating and changing software is important for security we have been asked to provide support for firewalls as a recurring service by customers.  Upon request we can also quote as a per job labor fee to perform the similar services if preferred.

Since the solution is software on a computer we will break the price down with the computer cost separate.  Some customers prefer us to purchase the parts and put a computer together, some prefer to purchase a computer direct and drop ship to us, others prefer to pay a little extra on the recurring fees and not worry about owning the hardware.

Maintenance of the firewall server using packet filtering techniques with adequate computer hardware provided by customer: 
The cost of the computer is separate, additional firewall techniques can be negotiated and a labor charge per professional hour will be requested if customer requires additional assistance, and a subscription of:

We request an agreement of a minimum of three months of service due to labor invested in setup.  pricing negotiable

Maintenance of the firewall server using packet filtering with computer hardware covered by recurring fees: 
The cost of the computer hardware maintenance is included at a rate to cover equipment costs, additional firewall techniques can be negotiated and a labor charge per professional hour will be requested if customer requires additional assistance, and a subscription of:

We request an agreement of a minimum of six months of service due to labor and hardware invested in setup.  pricing negotiable

 

Disclaimer: This media is distributed with the understanding that the information presented is from various sources, from which there can be no warranty or responsibility by Cocoa Village Publishing, Inc. as to the legality, completeness and accuracy, except when otherwise stated in writing. Rights to information herein remain the property of their respective owners and may not be reproduced without appropriate authorization. Copyright © 2005 Cocoa Village Publishing, P.O.Box 218, Cocoa FL 32923 USA
Phone (321) 633-4990 • Fax (321) 633-4997 • www.cocoavillagepublishing.com • questions@cocoavillagepublishing.com
services   marketing   e-commerce   development   connectivity   us