-
August 6th, 2003, 04:26 AM
#21
I have tested all 3 products PIX, Netscreen and checkpoint...at my last engagement,,
We opted with Netscreen..Although for plitical reasons, we didnt give checkpoint much of a chance..Here is our results
Netscreen was our choice..for the following reason.
1. It implements VPN in hardware (ASIC) unlike Cisco although now Cisco PIX has
feature of VPN accelerator card..ASIC is lot faster than implementing insoftware..
2. manageabilty alotttttttt better than Cisco PIX.Cisco was a pain to manage as rule list increased..
3. Netscreen allows you to take an interface (ex gig interface) and break it up into multiple
sub interfaces thus allowing u to create many DMZs w/o buying additional hardware..
Csico does not have that feature, infact maximum # of interfaces on PIX525 was I believe around 15-17..(and thats the high end expensive platform.....
Last but not least,,,We needed a firewall connecting to timewarner cable ,
w/DHCP addresses..The netscreen Firewall can be set up to act as DHCP client
on outside interface but the Cisco PIX could not...
Hope this helps...
Good Luck..
-
August 6th, 2003, 05:14 AM
#22
Junior Member
I see that this thread is old and most likely completely passed, but I just wanted to put in my little plug for SONICwall. I have used it before, and I am using it now, with no problems what so ever. I have had it, the hardware firewall 1U box, for a few years now, and haven't had one problem because of it yet.
Just my opinion.
-
August 25th, 2003, 04:04 PM
#23
Junior Member
I assume in item 3 you are talking about the VSYS options on NetScreen 500s and above.
BTW, we have a few in stock. http://www.nha.com
Norman Hirsch
NH&A
http://www.nha.com
antionline@nha.com
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|