Posted on 2012-03-15
Medium Priority
Last Modified: 2012-03-17
Hi there,
I would like to buy a firewall.  Here is what I need in a firewall:
-integration with windows AD
-IPS, antivirus, antispam, application control and P2P (like kazza, limewire and other advanced apps, facebook,yahoo, etc etc etc)
-Real time view of logs
-network security, websecurity
-http filtering on the basis of users/groups
which one is the best watchguard, sonic wall, checkpoint or any other.  I guess cisco NME IPS K9 would not give me app filtering like facebook etc on the basis of users?
Should be cheap but performance wise about 600,000 concurrent connections.  Advice please.
Question by:amanzoor

Accepted Solution

wherami earned 668 total points
ID: 37727807
Checkpoint, Websense, Ironport, and Microsoft TMG. Ironport for spam filtering. Checkpoint as Firewall with IPS. TMG as a forward/reverse proxy integrated with Websense placed behind the Checkpoint firewall.

Sonic Wall and Juniper also are great appliances that scale well.
LVL 39

Assisted Solution

by:Aaron Tomosky
Aaron Tomosky earned 664 total points
ID: 37727972
If application layer control is your thing check out meraki (I probably lean toward sonicwall though for all the other reasons)
LVL 20

Assisted Solution

carlmd earned 668 total points
ID: 37728662
In other similar questions here the consensus seems to be Sonicwall. Have installed many of them and they do everything you ask for and more. Reasonable price and easy to configure using wizards and the web interface.

If you provide more info about your site (# users, web or other servers, special needs etc) I can provide a model recommendation.

Featured Post

We Need Your Input!

WatchGuard is currently running a beta program for our new macOS Host Sensor for our Threat Detection and Response service. We're looking for more macOS users to help provide insight and feedback to help us make the product even better. Please sign up for our beta program today!

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

This article is in regards to the Cisco QSFP-4SFP10G-CU1M cables, which are designed to uplink/downlink 40GB ports to 10GB SFP ports. I recently experienced this and found very little configuration documentation on how these are supposed to be confi…
This article will show you step-by-step instructions to build your own NTP CentOS server.  The network diagram shows the best practice to setup the NTP server farm for redundancy.  This article also serves as your NTP server documentation.
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …

587 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question