+ Post New Thread
Page 1 of 2 12 LastLast
Results 1 to 15 of 20
Hardware Thread, Hardware firewall? in Technical; We are just about to move away from SEGFL broadband onto our own dedicated line. The firewall used to be ...
  1. #1
    zag
    zag is offline
    zag's Avatar
    Join Date
    Mar 2007
    Posts
    3,762
    Thank Post
    897
    Thanked 416 Times in 350 Posts
    Blog Entries
    12
    Rep Power
    86

    Hardware firewall?

    We are just about to move away from SEGFL broadband onto our own dedicated line. The firewall used to be managed centrally.

    So BT have told me their router does not do NAT and we will need to purchase a dedicated firewall.

    Can anyone recommend one?

  2. #2


    Join Date
    Jan 2006
    Posts
    8,202
    Thank Post
    442
    Thanked 1,032 Times in 812 Posts
    Rep Power
    339
    Cisco ASA 5500 series. Really good.

  3. #3
    nicholab's Avatar
    Join Date
    Nov 2006
    Location
    Birmingham
    Posts
    1,471
    Thank Post
    4
    Thanked 97 Times in 93 Posts
    Blog Entries
    1
    Rep Power
    50
    Last edited by nicholab; 4th April 2012 at 09:48 AM.

  4. #4

    glennda's Avatar
    Join Date
    Jun 2009
    Location
    Sussex
    Posts
    7,802
    Thank Post
    272
    Thanked 1,135 Times in 1,031 Posts
    Rep Power
    349
    We use Smoothwall's advanced firewall along with Filtering - been brilliant so far!

  5. Thanks to glennda from:

    tom_newton (4th April 2012)

  6. #5

    plexer's Avatar
    Join Date
    Dec 2005
    Location
    Norfolk
    Posts
    13,344
    Thank Post
    624
    Thanked 1,584 Times in 1,421 Posts
    Rep Power
    414
    Another vote for Smoothwall been running their firewall for year and they do appliance versions too.

    Ben

  7. Thanks to plexer from:

    tom_newton (4th April 2012)

  8. #6

    Join Date
    Jan 2009
    Location
    England
    Posts
    1,482
    Thank Post
    297
    Thanked 304 Times in 263 Posts
    Rep Power
    82
    Plenty of suggestions Palo Alto or Juniper depending on budgets and requirements. Used the Juniper SRX240 a few times very successfully, and currently looking at the Palo-Alto PA-4020 in a clustered config for a new connection

    Fortigate is another one to look at (and can work out very cost effective), but the GUI/CLI isn't for everyone. Finally Watchguard is popular in the SMB segment. I'm not a fan, but know plenty of people that like them!

    Are you looking for a UTM/Next-Gen firewall appliance with av scanning/IPS/Application identification or just a basic firewall? And what speed is your new connection? 10mb? 100mb? 1gbit? With some more detail can recommend specific products that would fit well

  9. #7

    Join Date
    Oct 2008
    Location
    Lincolnshire
    Posts
    2,176
    Thank Post
    12
    Thanked 224 Times in 214 Posts
    Rep Power
    66
    We use Watchguard, cannot fault them but alot of people on here also recommend Smoothwall.

  10. #8
    zag
    zag is offline
    zag's Avatar
    Join Date
    Mar 2007
    Posts
    3,762
    Thank Post
    897
    Thanked 416 Times in 350 Posts
    Blog Entries
    12
    Rep Power
    86
    Its a 100mbit connection.

    500 users a day.

    I want a simple firewall basically, that's why its so confusing. Don't care about VPN, email, wireless or web filtering. Already got all that in place.

    The watchgaurds look like they have a nice web interface but its a confusing area. Who are the market leaders?

  11. #9

    glennda's Avatar
    Join Date
    Jun 2009
    Location
    Sussex
    Posts
    7,802
    Thank Post
    272
    Thanked 1,135 Times in 1,031 Posts
    Rep Power
    349
    Smoothwall can do just the standard Firewall - the rest is add ons - its fairly straight forward to configure

  12. 2 Thanks to glennda:

    tom_newton (4th April 2012), zag (4th April 2012)

  13. #10

    Join Date
    Jul 2006
    Location
    London
    Posts
    2,962
    Thank Post
    159
    Thanked 152 Times in 116 Posts
    Rep Power
    49
    We have Watchguards here too. Nice and simple to configure the firewall - setting up web filtering/spam filtering etc is a bit of a faff although the price for them makes up for it somewhat

  14. #11

    Join Date
    Jan 2009
    Location
    England
    Posts
    1,482
    Thank Post
    297
    Thanked 304 Times in 263 Posts
    Rep Power
    82
    Gartner have just published their 2012 UTM report (Magic Quadrant for Unified Threat Management) and then there's the Enterprise Firewall 2011 report (Magic Quadrant for Enterprise Network Firewalls).

    Take what's in those with a bit of a pinch of salt (you need money to get into those reports), but essentially your looking at the normal names - Cisco and Juniper both being pretty big with Fortinet and Palo-Alto having strong positions (Juniper, Fortinet and Palo-Alto all stem from the same set of people buying/selling/creating companies ). How much do you have to spend?

    If your sure you only want firewall and will never want AV scanning or IPS or any other additional services then a Cisco ASA5505 or Juniper SRX100 or Fortigate-40C would all work. If you start looking at other services then you'll need to move to a bigger box to get full 100Mbps performance, but for purely firewalling those will all work and be in the 300 range without support/install costs.

  15. #12
    dwhyte85's Avatar
    Join Date
    Mar 2009
    Location
    Berkshire
    Posts
    1,218
    Thank Post
    156
    Thanked 147 Times in 132 Posts
    Rep Power
    102
    WG are very easy to setup, so are ASA though

    Horses for courses and prices

  16. #13
    zag
    zag is offline
    zag's Avatar
    Join Date
    Mar 2007
    Posts
    3,762
    Thank Post
    897
    Thanked 416 Times in 350 Posts
    Blog Entries
    12
    Rep Power
    86
    Quote Originally Posted by glennda View Post
    Smoothwall can do just the standard Firewall - the rest is add ons - its fairly straight forward to configure
    Thanks, just gave them a call.

    Don't they price on clients though? Could be expensive for us.

  17. #14
    zag
    zag is offline
    zag's Avatar
    Join Date
    Mar 2007
    Posts
    3,762
    Thank Post
    897
    Thanked 416 Times in 350 Posts
    Blog Entries
    12
    Rep Power
    86
    I'm also looking at this

    xtm5-mainprod.jpg

    WatchGuard XTM 5 Series 505 WG505031 | Insight UK

    Looks awesome too

  18. #15

    Join Date
    Jan 2009
    Location
    England
    Posts
    1,482
    Thank Post
    297
    Thanked 304 Times in 263 Posts
    Rep Power
    82
    Quote Originally Posted by zag View Post
    I'm also looking at this

    xtm5-mainprod.jpg

    WatchGuard XTM 5 Series 505 WG505031 | Insight UK

    Looks awesome too
    If you only want 100Mbps firewalling the XTM21 is cheaper . The watchguards do look good though

SHARE:
+ Post New Thread
Page 1 of 2 12 LastLast

Similar Threads

  1. Hardware vs Software firewall
    By eean in forum Wireless Networks
    Replies: 8
    Last Post: 10th October 2008, 10:46 AM
  2. Old hardware - what do you do with it?
    By tarquel in forum Hardware
    Replies: 24
    Last Post: 11th November 2005, 02:35 PM
  3. Hardware Support Contracts
    By russdev in forum Windows
    Replies: 18
    Last Post: 21st September 2005, 09:55 PM
  4. Windows Firewall
    By GrumbleDook in forum Windows
    Replies: 16
    Last Post: 31st August 2005, 12:54 PM
  5. Replies: 0
    Last Post: 26th August 2005, 01:29 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •