[Webinar] Streamline your web hosting managementRegister Today

x
?
Solved

ISA 2006 & Cisco FireWall

Posted on 2011-02-16
2
Medium Priority
?
417 Views
Last Modified: 2013-11-16
Hi guys,
Any one assist me what the different between ISA2006 and Cisco Firewall? And which one it’s better for security internet
0
Comment
Question by:Mabr0
2 Comments
 
LVL 18

Assisted Solution

by:jmeggers
jmeggers earned 500 total points
ID: 34908986
I don't know all that much about ISA so can't make a direct comparison, but I don't think it's a firewall designed to keep undesired traffic from entering the perimeter.  I think it's more of an outbound proxy for URL filtering, etc.  Please feel free to correct me if I'm wrong.

The Cisco ASA is a stateful firewall with a number of layer-7 application inspections, VPN termination including IPSec and SSL, remote access and site-to-site, does phone proxy for encrypted IP phone connections from the outside, can be used with a content or IPS module, and has a number of other features.  
0
 
LVL 51

Accepted Solution

by:
Keith Alabaster earned 500 total points
ID: 34910298
From a security perspective they are both the same. Although ISA got there a head of Cisco, both have EAL4+ accreditiation - the highest you can get. Neither have been hacked - or reported as hacked, unless it was by miscofiguration. Both can handle traffic from layer 3 upwards to layer 7.

The main differences - for me at least are:

ISA does more. By this I mean ISA is not only a damn fine firewall but it was designed as an application gateway and a forward and reverse proxy - in the true sense. It has application and web filters built in and supports definitions for near as damn it every protocol defintion you can imagine.

Cisco does it quicker. The original PIX and then the ASA is hardware based and chunders through traffic faster than anything I have seen - and i have seen a lot of firewalls, appliances, gateways and proxies.

ISA does not do proxy for phones because it cannot understand SIP traffic. It can be made to work but this is not its main area by leveraging other realated services such as activesync, OWA, OMA etc.

Keith - ISA & TMG MVP
0

Featured Post

SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Microsoft's ISA Server has been its pre-eminent security product for about a decade and is still regarded amongst the well-informed as one of the best software firewalls and application gateways ever released, by any manufacturer. ISA Server has bee…
To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Stellar Phoenix SQL Database Repair software easily fixes the suspect mode issue of SQL Server database. It is a simple process to bring the database from suspect mode to normal mode. Check out the video and fix the SQL database suspect mode problem.
Suggested Courses

612 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question