Fredy Santana wrote:
>
> Thanks for you response. But my question is oriented to recommend a
> firewall. Obviously, in the most of the cases, the bottleneck is a bad
> arquitecture, some device are not correctily configurated, etc., but when
> I want recommend a firewall I won't recommend a SOHO firewall to a company
> with various E1 links and a web site with thousand of visits every hour...
> :), thus What kind of features must have the firewall?, How Can I
> dimensionate the device?. I'm thinking only in the perfomance issues
> 'cause of course that we need the policies, business plan, etc.
You can take a look in the firewll vendor's Website. In some cases they
give you numbers about performance under certain situations. Let's say,
you can take a look at
http://www.checkpoint.com/products/firewall-1/perf_data.html
and you'll find some numbers for Firewall-1. If you're buying a product,
the vendor should say you this kind of numbers.
Then, the few issues I care when I'm desingning a Firewall solution are:
Is internal bus capable of handling internal speeds like I'm using
in the network? How many machines are being protected by the firewall?
How many services will be allowed? How many concurrent connections?
Are the firewall running only packet filtering, or will have proxy
gateways also?
Again, you need to hire an experienced consultant to do this job,
or ask the vendors for numbers, not comparisons. Almost any vendor
will say you that their solution is the best. ;-)
Hope this helps. Regards.
-- M. Hoz
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
