Solved

Juniper SSG 140 easy for novice system administrator?

Posted on 2008-10-13
7
2,579 Views
Last Modified: 2012-05-05
Hi all,

  Now my company are using a SonicWALL PRO 2040, and my company is need using the VPN daily by daily .....

  The SonicWALL now the VPN starting to unstable, so I need sometime force reboot it to let the user access the VPN ...

  So I am planned replace it to the Cisco ASA 5510 Plus or Juniper SSG 140, But I am haven't working on Casco or Juniper.

  Do the SSG 140 is easy for novice System Admin for setting like NAT Port forward for the Exchange 2007, FTP that behind the firewall, VPN for remote office and user.

  And my company's SonicWALL is TotalSecure, so it mean it include the Anti-Virus, Spyware etc already.

  How much the SSG 140 with same class of the SonicWALL PRO 2040 TotalSecure???

  Choose Juniper or Casco 5510 Plus for SMB is better?

  Thank you very much.
0
Comment
Question by:explorerjimmy1979
  • 4
  • 2
7 Comments
 
LVL 11

Accepted Solution

by:
donmanrobb earned 125 total points
ID: 22706254
Juniper and Cisco CLI are easy enough to learn with some effort and both have webbased or gui options for configuring. Juniper does support anti-virus and anti-spam if you opt for the licensing. Cisco does not. However if you require SSL VPNs you will have to go with the ASA as the SSG doesn't support SSL VPN at this time.
0
 

Author Comment

by:explorerjimmy1979
ID: 22707944
What is the adv of SSL VPN compare with IPSec VPN??

My company's SonicWALL is using IPSec VPN Right now.
0
 

Author Comment

by:explorerjimmy1979
ID: 22707956
And compare the IPS etc, Cisco vs Juniper which one is better? I look the Cisco web site, it need a add-on module ....

I thinking the price of the Cisco will over my Boss's budget.
0
How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

 
LVL 11

Expert Comment

by:donmanrobb
ID: 22713410
SSL VPN among other things allows for clientless connections but if its not in your infrastructure already its not a concern. Both IPS rules are updated regularly but obviously it won't be as comprehensive as using one of the company's dedicated IPS boxes.

Overall the Juniper will be a lesser cost.
0
 

Expert Comment

by:coolfunsport
ID: 23801641
I'd like to know what solution you ended up going with and what your experience has been. I am currently evaluating  and have to pick between the  Juniper SSG140 and Cisco ASA5510.
0
 

Author Comment

by:explorerjimmy1979
ID: 25184201
Hi,

Final I upgrade the SonicWALL PRO 2040 to SonicWALL NSA 2400

It SonicOS is Gen 5, all VPN unstable problems gone after upgrade, and I hold nice price with SonicWALL
Now I am love SonicWALL again. Since it do better than before.
0
 

Author Comment

by:explorerjimmy1979
ID: 25184218
And I have had bought a 2nd hand Juniper NetScreen 5GT with latest 6.2.0r2 at my home.

Compare with the SonicOS with ScreenOS, I am feeling ScreenOS is harder for novice Admin Using ... Like the VPN setting ..

I used 4 days to search google then find the Juniper KB how to setting with example to match my case, and used half of hour to following the KB (P.S. I am total new on Juniper, but 2nd hand 5GT are base on learning it ScreenOS) but SonicOS just need following up the Wizard, just need five minutes for novice admin user.

The other down side of Juniper is, it now SSG series ScreenOS 6.2 are same as 5GT, 5GT haven't the remote reboot function build-in on it GUI (Don't ask me using SSH or CLI to management the 5GT) Consider Novice Admin User who like the GUI more ...

SonicOS Gen4 is a bit not stable on VPN onkly, but whatever Gen4 or Gen5 OS, it also have the remote reboot function for you need to force reboot it as need.

I experience 5GT VPN not working ... But can login to it GUI interface by SSL, so know the firewall is working ... just want to reboot it ... But out of lucky I can't since haven;t this let you click ... So the end is I telephone back to home to ask my father force power it off and on again to fix the problems ...

It is the design not good reason, but other than that, Juniper still good choose.

Hope this will help for some user than compare with SonicWALL and Juniper ...

And sorry to too last to reply the open commit user who post here.
0

Featured Post

What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

Join & Write a Comment

In this tutorial I will show you with short command examples how to obtain a packet footprint of all traffic flowing thru your Juniper device running ScreenOS. I do not know the exact firmware requirement, but I think the fprofile command is availab…
Hi All,  Recently I have installed and configured a Sonicwall NS220 in the network as a firewall and Internet access gateway. All was working fine until users started reporting that they cannot use the Cisco VPN client to connect to the customer'…
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …
You have products, that come in variants and want to set different prices for them? Watch this micro tutorial that describes how to configure prices for Magento super attributes. Assigning simple products to configurable: We assigned simple products…

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now