Link to home
Create AccountLog in
Avatar of OCUBE
OCUBEFlag for United States of America

asked on

Watchguard XTM505 - Fortinet's Fortigate 80C - Sonicwall TZ210, NSA 240 - Netgear Prosecure UTM25



Which one would you prefer to buy from this below firewalls list, w.r.t features,support,user friendly, reliability ?


Watchguard XTM505

 Fortinet's Fortigate 80C  

 Sonicwall TZ210, NSA 240  

 Netgear Prosecure UTM25
ASKER CERTIFIED SOLUTION
Avatar of digitap
digitap
Flag of United States of America image

Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
See answer
Avatar of OCUBE

ASKER



Are there a major difference between Sonicwall's   NSA  Vs. TZ series ?
SOLUTION
Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
Avatar of OCUBE

ASKER



Does both NSA & TZ take care of the spyware/malware attacks which we see most commonly on user desktop PC's when they are browsing ?

I have seen instances where user PC's get some fake antivirus trojan infections, either when to accidentally go to some websites or click on some bad emails.
SOLUTION
Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
Avatar of OCUBE

ASKER


I would not replace our workstations Symantec SEP. I will still that in place.

The Client antivirus solution what you had mentioned above, is that a separate product by itself ?

Can local SEP install talk to Sonic and still be able to block internet access if there is a PC infection ?
Cool.

It's licensed separately from the Total Secure package. It's a partnership with McAfee.

No.

information about the basic package is below:

http://www.sonicwall.com/us/products/Network_Security_Comprehensive_Gateway_Security_Suite.html

information about the client is here:

http://www.sonicwall.com/us/products/Network_Security_Enforced_Client_Anti_Virus_Anti_Spyware.html
Avatar of OCUBE

ASKER


OK, I will check your links.

Tell me if the features what I am looking below are part of SonicWall NSA & TZ series:

1.  Lets say a PC gets infected with some virus and try's to send out tons of spam emails from our network to the outside world. Now either those emails are going out from local PC outlook, or being routed through our email server which is in the same LAN.

Lets say on an average I know emails going out will be around 200-300, when the above instance happens may be the mail server tries to send around 1000's of emails out. We will not know that there is an spam emails going out from our network, until we receive an email bounce back message from a legitimate outside email server saying that your email is not delivered because your public IP address (or mail server external IP address) got blacklisted in some spam databases.

Now after we see the above message we try to look for the PC which got infected, its hard to find it unless we run a full scan on all the PC's.  

Now in the above instance can SonicWall be proactive and alert us before our IP gets blacklisted outside.


 2.  Can it show us a report of the internet bandwidth usage of our network over a period of time ?

3.  Can it show us a real time internet bandwidth usage based on the network PC's hostname or IP address, to identify the PC's which are using most of our internet bandwidth ?


4.  Can we do bandwidth management based on internal IP addresses.  Lets say we have T1 1.5Mbps pipe, I wanted to create a bandwidth profile and allocate  0.80Mbps to a certain internal Lan IP address(which is our web application server) ?


..... will add more to the above list once I get answers.



Thanks in advance
SOLUTION
Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
Avatar of OCUBE

ASKER



 5.  Does having Gigabit ports on the firewall help ? if YES how in our case

     we have internal Gigabit switch ,most of the servers are having gigabit NIC cards, Cat6 cables are
     run between the NIC's and switch.

     The current firewall we have(Linksys Rv016- which we will be replacing with SonicWall now) has
    only regular 100MB ports.

     ISP(1.5Mb pipe) has a Cisco router(which is just a bridge and does not do anything)

    Cat6 cable runs from Cisco(ISP) to Rv016(firewall) <=> GigabitSwitch

    All the servers are connected to Gigabit.


    Now if we had a firewall(Sonicwall) with Gigabit port, does it help w.r.t. performance ?

   

5. your internet connection is 1.5mb so that's going to be your limiting step. your internet traffic may hit the sonicwall at 1gb, but they are going out at 1.5mb. i don't see how, in this case, 1gb would really matter. internal traffic isn't going to traverse your sonicwall, unless you are routing different subnets internal through the sonicwall, so it doesn't matter that the port is 1gb. i've seen some posters here on EE with 1gb internet connections.
Avatar of OCUBE

ASKER



we will be adding one more new  ISP line (20Mbps download ,10Mbps upload) to the current network.
so adding, which means you'll have redundant internet? the sonicwall does allow you the opportunity to add an additional WAN connection and load balance/failover/spillover to a secondary internet connection.
Avatar of OCUBE

ASKER



 The new ISP will not be a failover for now:

Initially we wanted to use the 2nd pipe to serve fully for one of our internal web hosting server

and will eventually wanted to load balance these 2 ISP pipes( 1.5Mbps - Covad statis  + Comcast Business 20Mb D/10Mp U ) and do some bandwidth profiling.

Which I am hoping the Sonicwall does the job ?right?
yep. you can setup routes based on either the host or type of traffic will use which WAN interface. then, you can create firewall rules to decide how much bandwidth they use.
Avatar of OCUBE

ASKER


  The NSA 240 has a "Stateful Throughput 600Mbps",  "UTM throughput 110Mbps"..etc

  Now lets say we get the NSA 240 device and later down the road if we realized we are not fully using all the features.

 1.  Now can we turn off the UTM features in the device ? If we do this, is the UTM throughput
       released back to the NSA 240 device to handle other features efficiently.

 
2. Out-of the  box, does it have everything(all features) enabled which might be using most of the NSA 240 processing power - which 40% of the features we don't use in our network.

Can we turn them OFF, to make the NSA 240 work more efficient and faster for the rest of the 60% features we might be using in the NSA 240 device.



SOLUTION
Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
Avatar of OCUBE

ASKER



So just a basic NSA 240 would allow us do everything except the following optional features :

- Antivirus
- Spyware
- Content Filtering
- VPN's
- viewpoint reporting software


Can we just get the basic NSA 240 and will we be able to do all the basic firewall functionality(including bandwidth management and be able to buy the optional viewpoint reporting software) ?
out of your list, with a basic firewall you can still establish at least 25 site to site VPNs and you get 2 licensed GVC users and 2 ssl-vpn licenses. the other options are paid services. i believe you can license viewpoint separately, but we'd discovered that purchasing the package was cheaper. of course, you are now committing to yearly renewal costs.
Avatar of OCUBE

ASKER



So initially to start of we can buy the basic unit and once we like it we can add the optional features
later down the road ?
yes, but something the reseller or soncwall sales is going to tell you is they make it attractive to get into the package stuff because they lower the price. i am on the technical side so i don't see the actual costs. it might be cheaper to get into the security services up front than to wait down the road. you'll have to ask them about that when the time comes.
Avatar of OCUBE

ASKER



  OK, I will check with the sales rep.

Thanks for your postings.
Avatar of OCUBE

ASKER

Thanks
your welcome. you had some good questions and thanks for the points!