Newsroom Update

Beginning in May, a special Today at Apple series titled “Made for Business” will offer small business owners and entrepreneurs free opportunities to learn how Apple products and services can support their growth and success. Learn more >

Looks like no one’s replied in a while. To start the conversation again, simply ask a new question.

User profile for user: rshibley
rshibley Author
User level: Level 1
0 points

Is the Lion Server built-in firewall good enough for a small business?

We are looking to switch to Macs for my 20 person nonprofit and I would like to know opinions on whether the firewall that is built into Lion Server will be secure enough for a small business. Right now we have a Sonicwall TZ 210 and we hate it because it's uncessarily complicated to do what, say, DD-WRT does with ease. We are considering instead getting a Peplink Balance 30 for our two internet connections. It has a firewall, but I was wondering whether it might be simpler to turn that off and use the Lion Server firewall. Does anyone have an opinion on that?


Thanks,

Robert

Posted on Nov 17, 2011 7:45 PM

Reply
Question marked as Best reply
User profile for user: sfatula
sfatula
User level: Level 2
158 points

Posted on Nov 17, 2011 8:59 PM

Several things to consider here.... The Lion firewall is really easy to configure, so, that's a plus. To use it though, that implies you are going to use the server as a router. When you do that, you now have to use NAT, etc. So, it's more than just the firewall. You have two connections, meaning, whatever the Lion server is has to have a number of ehternet ports.


So, the short answer is the Lion firewall is easy and it's more than good enough to be used. However, I would say the added complications involved should lead you to using a traditional router with firewall.

View in context
7 replies
Question marked as Best reply
User profile for user: sfatula
sfatula
User level: Level 2
158 points

Nov 17, 2011 8:59 PM in response to rshibley

Several things to consider here.... The Lion firewall is really easy to configure, so, that's a plus. To use it though, that implies you are going to use the server as a router. When you do that, you now have to use NAT, etc. So, it's more than just the firewall. You have two connections, meaning, whatever the Lion server is has to have a number of ehternet ports.


So, the short answer is the Lion firewall is easy and it's more than good enough to be used. However, I would say the added complications involved should lead you to using a traditional router with firewall.

Reply
User profile for user: rshibley
rshibley Author
User level: Level 1
0 points

Nov 18, 2011 6:19 AM in response to sfatula

Ah, that is an excellent point and it is a Mac Mini so that's probably going to preclude using it for that. It's too bad, because it did look easy, and if it's secure enough it would have made things easier. That said, what brand of firewall would anyone recommend that is easy to use and secure? Like I said, we have a Sonicwall but it's basically the opposite of easy to use. We don't have complicated needs so maybe the Peplink would work, but I would love to hear from other people who have Mac based businesses about what they use.

Reply
User profile for user: BuenosAires926
BuenosAires926
User level: Level 1
5 points

Nov 19, 2011 10:49 PM in response to sfatula

If you have a single Internet connection, the easiest way to configure your firewall is with an Airport Extreme (5th generation). When configuring a service on the Server App, it automaticaly configures the corrensponding ports on the router.

It also turns on RADIUS on the Airport, so your wireless users will connect to the network with their assigned user name and password. That way, you don't have to give away the wireless keys. When a user leaves the company disabling the user account cuts the wireless access as well.

Reply

Is the Lion Server built-in firewall good enough for a small business?

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple ID.
Learn more Sign up