Everything that you said is correct and I love that PIX and I have installed it many times with the failover option for high availability, never the less what about clustering, what about logging, and I don't mean Syslog data or the 512 lines that the PDM offers with limited information, I can go on and on about the pros and cons of using platforms like windows, Solaris, Linux. Don't forget the FreeBSD that the Nokia box is based upon which is tightly integrated with the firewall, scalability is the name of the game. I have a lot of experience with every product offered by CheckPoint and there competitors like Cisco, Netscreen and all the other solutions. The only Vendor that can give a good and complete security solution is CheckPoint and if you want to talk about clients, check the functionality of the CheckPoint SecuRemote client of the SecureClient by it self or together with the SCV function. I am not trying to prove the CheckPoint is better every case need a differant solution depends on the people operating the system and the companies specific need (I am an integrator). Personally I believe that CheckPoint has the best security solution on the market today even if I love Cisco's solutions.
Gil "Tim O'Brien" cc: Sent by: Subject: Re: OT - Firewall performance Comparisons - is it quitting time [7:30658] nobody@groups tudy.com 01/02/2002 02:42 PM Please respond to "Tim O'Brien" A couple of points, and I will then get off of my soapbox... Checkpoint NG is STILL an application running on UNIX or NT, not a self contained appliance. Personally I love Microsoft (let the flames begin!), however, with the critical updates that I see getting installed on my 2000 and XP workstations I am POSITIVE that I would not want to trust my company security to it. Another point.. Have you ever installed and configured a Checkpoint firewall? You can have the PIX up and running with failover even before you get the OS half installed on the new server that you need to buy for it, thus raising the cost for an already more expensive solution in man-hours and equipment. The PIX is also very interoperable with other devices in the network. You can create PIX to PIX or PIX to IOS or PIX to 3000VPN site-to-site with other offices or home offices with built in 56bit DES or available 3DES . You can tunnel in VPN clients (free Cisco VPN client available). You can tunnel in Microsoft PPTP or L2TP sessions. And one last point, Have you ever had to get support from Checkpoint??? enough said about that one... If you would like to discuss further contact me offline... Tim ----- Original Message ----- From: "[EMAIL PROTECTED]" To: Sent: Wednesday, January 02, 2002 4:05 AM Subject: Re: OT - Firewall performance Comparisons - is it quitting time [7:30652] > For quite a while CheckPoint is out performing every single Firewall in the > market a specially in the CheckPoint Next Generation Firewall version > and with the release of there SecureXL API. > It is important to remember that performance is not everything that need to > be compared while testing a Firewall. > I love the Cisco PIX but the CheckPoint NG is amazing. > > Gil ************************************************************************************************** The contents of this email and any attachments are confidential. It is intended for the named recipient(s) only. If you have received this email in error please notify the system manager or the sender immediately and do not disclose the contents to any one or make copies. ** eSafe scanned this email for viruses, vandals and malicious content ** ************************************************************************************************** Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=30659&t=30659 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]