• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 419
  • Last Modified:

ISA 2006 & Cisco FireWall

Hi guys,
Any one assist me what the different between ISA2006 and Cisco Firewall? And which one it’s better for security internet
0
Mabr0
Asked:
Mabr0
2 Solutions
 
John MeggersNetwork ArchitectCommented:
I don't know all that much about ISA so can't make a direct comparison, but I don't think it's a firewall designed to keep undesired traffic from entering the perimeter.  I think it's more of an outbound proxy for URL filtering, etc.  Please feel free to correct me if I'm wrong.

The Cisco ASA is a stateful firewall with a number of layer-7 application inspections, VPN termination including IPSec and SSL, remote access and site-to-site, does phone proxy for encrypted IP phone connections from the outside, can be used with a content or IPS module, and has a number of other features.  
0
 
Keith AlabasterEnterprise ArchitectCommented:
From a security perspective they are both the same. Although ISA got there a head of Cisco, both have EAL4+ accreditiation - the highest you can get. Neither have been hacked - or reported as hacked, unless it was by miscofiguration. Both can handle traffic from layer 3 upwards to layer 7.

The main differences - for me at least are:

ISA does more. By this I mean ISA is not only a damn fine firewall but it was designed as an application gateway and a forward and reverse proxy - in the true sense. It has application and web filters built in and supports definitions for near as damn it every protocol defintion you can imagine.

Cisco does it quicker. The original PIX and then the ASA is hardware based and chunders through traffic faster than anything I have seen - and i have seen a lot of firewalls, appliances, gateways and proxies.

ISA does not do proxy for phones because it cannot understand SIP traffic. It can be made to work but this is not its main area by leveraging other realated services such as activesync, OWA, OMA etc.

Keith - ISA & TMG MVP
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Managing Security Policy in a Changing Environment

The enterprise network environment is evolving rapidly as companies extend their physical data centers to embrace cloud computing and software-defined networking. This new reality means that the challenge of managing the security policy is much more dynamic and complex.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now