Solved

firewall

Posted on 2012-03-15
3
426 Views
Last Modified: 2012-03-17
Hi there,
I would like to buy a firewall.  Here is what I need in a firewall:
-integration with windows AD
-IPS, antivirus, antispam, application control and P2P (like kazza, limewire and other advanced apps, facebook,yahoo, etc etc etc)
-Real time view of logs
-network security, websecurity
-http filtering on the basis of users/groups
which one is the best watchguard, sonic wall, checkpoint or any other.  I guess cisco NME IPS K9 would not give me app filtering like facebook etc on the basis of users?
Should be cheap but performance wise about 600,000 concurrent connections.  Advice please.
0
Comment
Question by:amanzoor
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 2

Accepted Solution

by:
wherami earned 167 total points
ID: 37727807
Checkpoint, Websense, Ironport, and Microsoft TMG. Ironport for spam filtering. Checkpoint as Firewall with IPS. TMG as a forward/reverse proxy integrated with Websense placed behind the Checkpoint firewall.

Sonic Wall and Juniper also are great appliances that scale well.
0
 
LVL 39

Assisted Solution

by:Aaron Tomosky
Aaron Tomosky earned 166 total points
ID: 37727972
If application layer control is your thing check out meraki (I probably lean toward sonicwall though for all the other reasons)
0
 
LVL 20

Assisted Solution

by:carlmd
carlmd earned 167 total points
ID: 37728662
In other similar questions here the consensus seems to be Sonicwall. Have installed many of them and they do everything you ask for and more. Reasonable price and easy to configure using wizards and the web interface.

If you provide more info about your site (# users, web or other servers, special needs etc) I can provide a model recommendation.
0

Featured Post

Don't Cry: How Liquid Web is Ensuring Security

WannaCry is just the start. Read how Liquid Web is protecting itself and its customers against new threats.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

For months I had no idea how to 'discover' the IP address of the other end of a link (without asking someone who knows), and it drove me batty. Think about it. You can't use Cisco Discovery Protocol (CDP) because it's not implemented on the ASAs.…
During and after that shift to cloud, one area that still poses a struggle for many organizations is what to do with their department file shares.
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question