afs757
asked on
Need a Firewall Info
I currently have a office tha has about 20 users. We need some type of firewall solution that will be able to hold up to about 75 users in this office. Also, the firewall needs to be able to setup Site-to-Site VPNs. I don't want to spen a lot of money (ie Cisco) but I need something that will be able to last us. If would like to add a little firewall for a remote site that would be nice too, but we are not looking into getting another office until a couple of months.
ASKER
Can this firewall do content filtering?
If you mean in the true sense like looking into the payload of every packet -> NO. PIX doesn't do that but it does application inspection though.
Cheers,
Rajesh
Cheers,
Rajesh
ASKER
So it cannot tell basically if a site is a porn site or not.
That kind of feature is not available in any firewall product I guess. That is why there are big industry players like WebSense, SurfControl, N2H2 etc. PIX supports integration with these.
Cheers,
Rajesh
Cheers,
Rajesh
ASKER
On the SonicWall stuff and the Watchguard stuff has content filtering I just don't know which one is the best choice
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
But isn't ISA expensive
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
https://www.experts-exchange.com/questions/21878837/Latest-PIX-software-that-can-be-used-for-Production.html
Rajesh, will you look at this post, Sorry to chase you like this
Thanks
Naren
Rajesh, will you look at this post, Sorry to chase you like this
Thanks
Naren
Naren,
I haven't had the opportunity to work with 7.0 but in general I would suggest you don't go for the EDs. I'll tell you the reason, if something breaks and you call up the first thing they would want you to do is to go back to General Release and then take the case to the respective team. The PDM/ASDM team is in India and obviously you'll have the delay :-)
Lrmoore and Giltr seems to have answered almost all the queries you had there I believe. Sorry I couldn't give any inputs man.
Cheers,
Rajesh
I haven't had the opportunity to work with 7.0 but in general I would suggest you don't go for the EDs. I'll tell you the reason, if something breaks and you call up the first thing they would want you to do is to go back to General Release and then take the case to the respective team. The PDM/ASDM team is in India and obviously you'll have the delay :-)
Lrmoore and Giltr seems to have answered almost all the queries you had there I believe. Sorry I couldn't give any inputs man.
Cheers,
Rajesh
Afs, no, ISA is not cheap and if this is more than you want to spend, thats fine; we can look at alternatives.
You can always go the Open source routes using something like IpCop or similar.
ASKER
Ok if I just needed a firewall (all the routing would be done by the server) for the main office. This firewall needs to be able to support a branch office when applicable. The amount of the users now at the office is 25 but will be up to 50 by the end of the year.And price is a bit of an issuse. I would like it to have content filtering. Also, would you explain the diagram of where it should go. Thanks
ASKER
Thanks guys. I have chosen to go with ISA server. I am getting another computer with Server 2003 and putting just ISA server 2004 on it. It will sit between the Internet Connection snd the internal switch. If any suggestions with a different setup I would appreciate it. If I need to open another question I can.
Sounds good to me :)
Take a look, don't like it then leave it; Just wanted to bring in if you haven't noticed it yet.
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/ps2031/index.html
Retailer link;
http://www.cdw.com/shop/products/default.aspx?EDC=340638
You can see in the above link that unrestricted license can be bought for 689 dollars and also take a look at the feature set.
Cheers,
Rajesh