Solved

Securing a web server, Watchguard XTM 22, or Sonicwall TZ 200?

Posted on 2011-02-16
3
974 Views
Last Modified: 2012-05-11
Looking to secure 2 web servers that are co-located in a datacenter, with a firewall...

Considering the watchguard XTM22, or the sonicwall TZ 200.

We currently use the sonicwall NSA and PRO series at our offices, but heard that the XTMs were great for smaller installations...

Street price on both seems to be around $400 or so...

Requirements:
-Block ports so only specific ports are open to the web servers (80, 443), on each server via each IP block.
-Connect via VPN for remote management of the device (VNC)

Not sure if we really need the UTM aspects of the devices?

Thoughts / comments?
0
Comment
Question by:HADDADD3
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 33

Expert Comment

by:digitap
ID: 34908016
the only thing the comes up immediately is the vpn aspect.  you can perform all the firewall aspects in your question, but the vpn between two sonicwall appliances is going to be more stable and easier to setup than one between a sonicwall and a watchguard.
0
 

Author Comment

by:HADDADD3
ID: 34908032
Are both units comparable? Does it boil down to user preference?
0
 
LVL 33

Accepted Solution

by:
digitap earned 500 total points
ID: 34908087
i've used watchguard appliances and i don't like them...at all.  so, you're not going to get constructive advice from that aspect.  also, i'm just not familiar with the XTM22.  i know sonicwall though and i've setup VPNs between the two vendors and helped others here on EE set them up as well.  it was a pain and troubleshooting is even harder.  you can almost guarantee a vpn between two sonicwall appliances (barring any strange unforeseen nuance) is going to take less than 15 min to setup.

that said, both appliances are relatively new, so my guess is they are going to operate at the firewall level about the same.  so, it probably does come down to user preference, but i'm throwing in the consideration of VPN in regards to interoperability.
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this tutorial I will show you with short command examples how to obtain a packet footprint of all traffic flowing thru your Juniper device running ScreenOS. I do not know the exact firmware requirement, but I think the fprofile command is availab…
I found an issue or “bug” in the SonicOS platform (the firmware controlling SonicWALL security appliances) that has to do with renaming Default Service Objects, which then causes a portion of the system to become uncontrollable and unstable. BACK…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
In this video you will find out how to export Office 365 mailboxes using the built in eDiscovery tool. Bear in mind that although this method might be useful in some cases, using PST files as Office 365 backup is troublesome in a long run (more on t…
Suggested Courses

632 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question