Excerpts from internet.computing.firewalls: 14-Jun-101 RE: Looking for
Firewall by Paul Wentland@edmontonex
> Budget isn't limited.
Everyone's is to some extent. For some it's only <$10,000,000,000, but
there's always some limit.
> Security is important, but I guess for everybody. Also useability,
means simpli
> fied policy configuration and management.
Sometimes these can be contridictory, sometimes not. Everything has
tradeoffs of some type. For example, one of the ones you mentioned
earlier, sonicwall, has very simplified configuration and management,
but it doesn't have nearly as many options as,for example, the pixs do.
If just depends on what you need and want.(in that order, of course)
> Netscreen has 10Mbit, we want 100Mbit. How about Raptor?
> We want the "best bang for the buck".
What kind of internet and LAN setups do you have? you haven't mentioned
anything about that yet, despite several requests. It's difficult, no,
impossible to recomend a product for a situation that we know nothing
about.
For the vast majority of setups, 100MB is pointless, and (for the most
part) purely a marketing thing, one more thing to point to and say, "We
have this feature, <other vendor> doesn't, that makes us better" When,
unless you have more than about 5-6 T1's, in which case you should be
thinking about a Fract T3, or your firewall is bridging all your traffic
over your internet link (in which case, except under certain cases, your
network admin should be shot, or at least tarred and feathered and run
out on a network cable) the 100MB link is pointless. Especially since
the firewall(at least, if not everything) should be connected by a
switch to the rest of your network.
So, again, let us know what you have, and you might get a better answer.
The "best bang for the buck" varies widely depending on setup. and BTW:
my (limited) expirence with raptor is that configuration options are OK,
but performance bites for more than a T1 or two.
-Eric
>
> Paul
>
>
> -----Original Message-----
> From: [EMAIL PROTECTED] [SMTP:[EMAIL PROTECTED]]
> Sent: Wednesday, June 13, 2001 4:12 PM
> To: Paul Wentland; [EMAIL PROTECTED]
> Subject: Re: Looking for Firewall
>
> Could you tell us a little about your needs? i.e., do you need
> anything the NetScreen-100 does that the -10 doesn't do? WHy a PIX
> 515 and not 520?
>
> The real question shouldn't be "which is best?" but "which is best
> for your needs and/or budget?"
>
> David Gillett
>
>
> On 13 Jun 2001, at 8:32, Paul Wentland wrote:
>
> > Hi to everyone,
> >
> > I'm looking for a firewall.
> > I'm considering three of them:
> > SoniWALL PRO
> > Cisco PIX-515
> > Netscreen 100
> > I read some information, that sonicwall has poor support, logs and
the perfor
> mance is bad, but it is inexpensive.
> > How about PIX515 and Netscreen 100?
> >
> > I would appreciate any help.
> >
> > Paul,
> > [EMAIL PROTECTED]
> >
_______________________________________________
Firewalls mailing list
[EMAIL PROTECTED]
http://lists.gnac.net/mailman/listinfo/firewalls
