Light Theme · Dark Theme
Facebook Share Button Twitter Share Button Reddit Share Button

As an Amazon Associate I earn from qualifying purchases. All product links on this page are monetized.

Choosing a Home-Office or Small Office Firewall

 

When I was a full-time computer technician, home-office and small-business users often asked why I recommended firewalls that they thought were "too expensive." And in fairness, I could understand their suspicions. After all, I was recommending firewalls that cost at least a few hundred dollars when cheap, consumer-grade firewall / routers were available for less than $30.00 at retail chains.

The answer, of course, was that you get what you pay for. Bottom-shelf firewall / routers almost never have adequate hardware, software, and ongoing support to do very much more than act as glorified switches. They'll let you share your Internet connection, but that's about it. Even high-end "gaming routers" are more optimized for high speed and low latency than for security.

Where consumer-grade firewalls and routers tend to be most inadequate is in ongoing support. A router is actually a computer, with an actual operating system, running actual software; and as with all computers, bugs and vulnerabilities are constantly being discovered and exploited. Keeping the firewall healthy and able to defend your network against attacks requires updates to its firmware (its embedded operating system and software), and developing those updates costs money. A company that may be making two or three dollars profit on a $30.00 router (if they're lucky) simply isn't going to invest too much time and money keeping the device's firmware up-to-date.

Another reason to reach higher than the bottom shelf when choosing a firewall for a home office or small office is that higher-end devices can also perform duties like spam-filtering and malware-scanning using dynamically-updated definition files. This can dramatically reduce the amount of garbage that winds up in your inbox. It also helps reduce the risk of your data (or your customers' data) being stolen by hackers for identity theft or held hostage by ransomware.

 

Questions to Ask Yourself When Choosing a Firewall Router

Almost all SoHo firewalls are embedded into routers and provide both security and routing services. You can also purchase these appliances separately; but for most small and medium-sized businesses, a single appliance that does both jobs is fine. The following discussion, therefore, assumes that you'll be purchasing a single router firewall rather than separate appliances. That being said, here are some questions to ask yourself when making your purchase decision.

 

What Do Your Financial Services Providers Require or Recommend?

Many banks and merchant credit card servicing providers have requirements or recommendations for firewalls, expressed as either a list of requirements (ICSA certification, malware scanning, and a support and update subscription with the firewall manufacturer are frequent ones) or a list of specific makes and models. If your provider requires that you use a particular router or one that meets their requirements, that narrows your search considerably.

One brand of firewall routers that are frequently required or recommended by financial services providers is SonicWall, and for good reasons. Aside from running on quality hardware, most SonicWall routers come with managed, ongoing support and dynamic updates to protect your network from intrusion, malware, spyware, ransomware, and other threats. Whether your provider requires it, or you just want great security and peace of mind, SonicWall firewalls and routers are hard to beat.

 

Are You a Health Care Provider?

Health care privacy in the United States is regulated by a ponderous set of rules and regulations based on HIPAA, the Health Insurance Portability and Accountability Act of 1996. Although the government doesn't specify specific routers, health care providers can be held liable if their patients' medical records are breached; so it behooves you to purchase a high-quality firewall like a SonicWall.

Your medical records software provider may also have specific firewall requirements or recommendations, so check with them, as well.

 

Do You Need WiFi?

Note that I used the word need,not want. If you don't actually need WiFi, then you're frankly better off without it. Although the risk is slight if you use WPA2 and a strong key, it's still an additional vulnerability. Some financial institutions may also prohibit the use of WiFi if you process credit cards on-site.

If you do need WiFi, I suggest that you choose a router that supports the latest WiFi standards (802.11ac or WiFi 5 as of this writing) on both the 2.4 GHz and 5 GHz bands. Although 5 GHz is faster, 2.4 GHz is better at penetrating walls and may be required for older devices. USE WPA2 encryption, choose a strong key, and keep it private.

If you want to offer WiFi to your customers, be sure that the router supports guest access. That allows you to set up separate WiFi access to allow your customers to connect to the Internet, but not to access your local network.

 

What Advanced Features Do You Need?

Most business-grade routers support special features that you may or may not need. Here are just a few examples.

 

What is Your Budget?

This really should be the last question you ask when choosing something as important as a firewall. It's the thing you should consider only after you've narrowed your search down to those devices that will satisfy your needs and those of any providers who have a say in the matter. At a minimum, make sure that the router you choose is ICSA-certified. It at least shows an attempt at doing your due diligence to protect your customers' or patients' data. Saving a few dollars isn't worth your company's becoming the victim of ransomware, a data breach, or other cybercrime.

 

Are you in business? Create an Amazon Business Account.