Thomas,
Although my fellow HP-UXers out there may not like my answer here, I'd have to recommend running Linux 2.4, with a distribution of your choice (RedHat/Mandrake/SuSE). If you need to run it on a K470 then Checkpoint FW-1 is a great solution, however if you want a cheaper and still solid solution, I would recommend Linux for this task, here's why:
1. Linux 2.4 Kernel offers iptables, which provides a "stateful" firewall.
2. Easy to configure.
3. Great performance.
4. Very little associated cost.
While basic packet filtering will do, stateful firewalls take packet filtering to the next level by analyzing more than just the packet header and look for trends of abnormal usage which may represent a threat.
I'm no expert in this field, so take my info for what it's worth, but I think a Linux 2.4 box with a strong set of rules using iptables is a competitive solution for what you're after. It offers an inexpensive solution that provides a high level of security. If you're interested in using iptables for your firewall, be sure to check out the tutorial here:
http://people.unix-fu.org/andreasson/index.htmlIt's not perfect, but neither is FW-1 :)
- Mike
The network is the computer, yeah I stole it from Sun, so what?
