Firewall recommendation
Hello,
We are looking for a all-in-one firewall box with the following functions. Anyone have any recommendations:
- Good standard >100 mbit WAN firewall throughput
- SSL VPN portal style built in, support for mac and pc. a so called clientless solution, user logs in with AD account and should either be able to start a RDP session or a vpn tunnel
- support for pc and mac required for the above vpn function
- If possible the firewall should support two separate LANs on the inside, and support bandwithcontrol for each LAN (split the internet speed between two supported LANs behind the firewall with different ip subnets).
Any recommendations amongst the well known brands?
thanks,
joe
We are looking for a all-in-one firewall box with the following functions. Anyone have any recommendations:
- Good standard >100 mbit WAN firewall throughput
- SSL VPN portal style built in, support for mac and pc. a so called clientless solution, user logs in with AD account and should either be able to start a RDP session or a vpn tunnel
- support for pc and mac required for the above vpn function
- If possible the firewall should support two separate LANs on the inside, and support bandwithcontrol for each LAN (split the internet speed between two supported LANs behind the firewall with different ip subnets).
Any recommendations amongst the well known brands?
thanks,
joe
Tony Giangreco
Try the Cisco small business Firewall SA520. We use them and they work very well. Cisco support has been excellent on it.
ASKER
Thanks. Do you know if it supports both the vpn and bandwith control scenarios?
ASKER
should mention we need the SSL VPN tunnels to be at approx 5 concurrent from start, with option to grow.
Here are the SA520 datasheets
http://www.cisco.com/en/US/products/ps9932/product_at_a_glance_list.html
http://www.cisco.com/en/US/products/ps9932/product_at_a_glance_list.html
ASKER
Thanks, it does not however seem to support LAN port bandwidth control for what I can see.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks! Is there any cheaper model that has anyconnect premium and QoS such as this one?
ASA 5505 series does not?
Joe
ASA 5505 series does not?
Joe
Hi,
I don't think the 5505 does but a 5510 might:
http://www.ebay.co.uk/itm/NEW-SEALED-Cisco-ASA5510-SSL50-K9-ASA-5510-SSL-IPsec-VPN-Adaptive-Security-App-/120993649941?pt=US_Firewall_VPN_Devices&hash=item1c2bc89515
That includes 100 SSL licences - best to contact the vendor to make sure that one does everything you need it to.
Regards,
RobMobility.
I don't think the 5505 does but a 5510 might:
http://www.ebay.co.uk/itm/NEW-SEALED-Cisco-ASA5510-SSL50-K9-ASA-5510-SSL-IPsec-VPN-Adaptive-Security-App-/120993649941?pt=US_Firewall_VPN_Devices&hash=item1c2bc89515
That includes 100 SSL licences - best to contact the vendor to make sure that one does everything you need it to.
Regards,
RobMobility.