PacketProtector (http://packetprotector.org/index.html)

It's an open-source firmware for certain Asus/Linksys routers. It combines OpenWRT with Unified Threat Management -- improved firewalls, router-level anti-virus, OpenSSL, IDS/IPS capability, etc.

I'm considering buying one of those routers and installing this firmware, but recently CheckPoint (who bought Zone Labs) debuted their own similar home security router. Details here (http://www.zonealarm.com/store/content/catalog/products/z100g/index.jsp?dc=12bms&ctry=US&lang=en)


Anyone have experience with either of these?

I paid 99 for the Linksys Router and the rest is FREE. ZoneAlarm wants 149 for the router and then 69.95 per year. Do the math :)

Yes, but PacketProtector is using entirely open-source programs and is thrown together by what I would call "novices" (when compared to Checkpoint, a big and well-known name in the security industry).

Checkpoint has far more experience in developing products that work, and also in providing support. PacketProtector does have a community user base, but there are no guarantees.

In short, I trust Checkpoint -- I don't know if I trust the experience and knowledge of the PP developers.

(that, and some of those components, like ClamAV, are in beta and have known bugs/vulnerabilities)

I haven't tried that one before. I've always been a DD-WRT fan (which is based off OpenWRT)

I might consider flashing my router and giving it a shot.

BTW Chris, I bricked one of my fon routers. I had a power surge while I was updating the firmware this weekend.

Garret, you have to use it with one of those two routers listed on their page...won't work with a WRT54G.

BTW I've decided to order the Checkpoint one sometime in the next month or so.

Disclaimer: I'm the founder of PacketProtector.org and I haven't tried/tested the ZoneAlarm router.

Three reasons to choose PacketProtector-

1) PacketProtector is extensible. It's a Linux box, and you've got root access. The only limits are system resources and your imagination.
2) PacketProtector is transparent. All of the IPS and AV signatures are available for review and modification.
3) PacketProtector is buzzword agnostic. ZoneAlarm chooses to call their VStream AV engine both gateway AV and IPS. PacketProtector provides layers of defense with a vulnerability-focused IPS signatures and malware-focused AV signatures.

dparm- I respect your decision to go with the Check Point solution, but years of security design/deployment/operations experience have left me with a fundamentally different world view.

Most solutions, whether they're open-source or from reputable vendors (Check Point, Cisco, etc), are pure junk. They're hard to manage and filled with vulnerabilities.

PacketProtector is just a collection of the best (<-my opinion) open-source security tools. All I've done is package them for use on a wireless router.

Cheers :)
Charlie

Hi Charlie, thanks for taking the time to write.

One of my big concerns is that ClamAV is the anti-virus solution; this is still in early beta, and there seem to be new bugs/vulnerabilities found every other week.

Also, my Linux experience = 0...my fear is that I'll get in over my head with this setup and have no clue what I'm doing. I don't know shell commands or anything of the sort.

I do have immense respect for your product, don't get me wrong. I simply think it doesn't match my level of expertise or my expectations at this point in time.