A NETGEAR FVS328 ProSafe VPN Firewall has been suggested for our firewall on our network.  Is this a good one or is there a better one we should use.
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

I personally perfer to use a Cisco PIX.  Just make sure that you can contral the traffic that comes into the firewall and goes out.  You also should have the ability to store the logs on a device other than the firewall, ie a syslog server.
It would not be prudent to blindly suggest any one firewall over another. It all depends on your requirements, your budget, your skill level, etc.
Personally, I would never deploy any Netgear product in a production environment where I was concerned with uptime, security, reliability or support.
I'm a big fan of the Cisco PIX, but it is not always the right solution for every occasion.

Have a look at some of these. I would not hesitate to use any of these products that fit my budget and my requirements. If you're looking at something higher-end, we can make recommendations there, too, but these fit in the same category as the FVS328

Low-end commercial-grade firewall appliances

Good solid product that does a lot. The Linksys QuickVPN client is cool.
Linksys RV082:

Lots of awards in the press for being a multi-function product, but I don't like all my eggs in one basket and I've heard that they are a real bear to get configured and maintain

Lots of good press and experts here at EE like these products:

Adtran is fairly new in the arena, but the products are solid, and the support is good (if you can live without 24x7 support), plus their corp. HQ is right in my backyard.
Adtran Netvanta

Netscreen has been bought out by Juniper Networks. Our corporate Network guys use Netscreen and are looking for a replacement (NOT a Netscreen)

Rock-solid product with good support:
Watchguard Firebox

PIX 501 - My favorite. Most reliable and versitile (IMHO)

I would put this product way down in my list unless budget was all I could afford:
D-LINK w/DMZ port

All of Symantec's products are rock solid:

This one I have not personally seen, nor do I have any collegues with first-hand experience:


Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
I am not so sure on SonicWall, especially if it has a heavy load on it. I have an ISP collocated with me that just bought one about a month ago, and he is constantly calling me to reboot it because it stops passing all traffic out of the blue. He’s been on the phone a lot with them, but they don’t seem to be able to get it fixed, so he has ordered a remote power management device so he can reboot it him self remotely, thank god. I myself would yank it out as I’d rather have no firewall than one that goes on the fritz all the time. I don’t know if his experience is the norm, but I find it disconcerting especially since he has a support contract, yet it still is not working at what I would an acceptable level.

Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

>> Netscreen has been bought out by Juniper Networks. Our corporate Network guys use Netscreen and are looking for a replacement (NOT a Netscreen)

lrmoore, Am I reading what you have said correctly, that you (or corporate network guys) are moving away from Netscreen ? Can I ask why ?

Dr-IP, I sometimes see this on a PIX, when the number of open connections causes a low end (501 or 506 usually) to run out of memory. Solution is to either lower the timeouts or (what I tend to do) work out what traffic is causing the open connections and block it (it is often virus/worm activity).

cagleg, sorry to barge in on your question, but it's good for the discussion anyway... ;)

I kind of tend to think the load that guy has on that SonicWall might be too much for it, but from what I have heard no one has a clue as to what is going on, or is willing to tell him, and he says the unit is the one they recommended he use, but for what he spent on it, I could have gotten a used 520, or maybe even a 525 from a reputable dealer with a years warranty, and I know it would handle the load he has without issue. It's what I reconmended he do, but he wanted it to be new, but didn't want to spend that kind of money, and look what it got him.
Do you need more information?
Have you resolved this problem?
Can you close this question?

It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.