I'm looking for a very simple firewall appliance that meets these requirements:
- Can put in front of a web server to restrict incoming traffic to port 80
- NAT for outgoing traffic
- No limitations other than those imposed by memory and CPU of the firewall on numbers of simultaneous TCP connections
- High quality SYN attack protection and other denial of service protections
- Works with at least 10 unique IPs on the back end
- Cost under $1K (either new or purchased used)
The product gets brownie points if it has web-specific firewall features, such as the ability to filter out URLs that do not contain certain paths, or the ability to direct different URLs to different back end servers.
What are some good options?