[TriLUG] [off topic] firewall, VPN, UTM, and web filtering suggestions

Ron Kelley rkelleyrtp at gmail.com
Thu Feb 17 11:39:06 EST 2011 

I will cast my vote for Cisco ASAs - specifically the ASA-5510s.  Lots of refurb units to choose from and they are rock-solid.  Plus, if you every have any problems getting the setup or running, there are a ton of Cisco people who can help out.

Aside from the ASAs, I also recommend pfSense as a web-friendly, OpenSource firewall solution.  I have a number of these deployed in various data centers handling tons of traffic.  They cost zero dollars (free), work extremely well, very easy to configure, and have great VPN support to other devices (including Cisco ASAs).


Thanks,

-Ron
rkelleyrtp at gmail.com




On Feb 17, 2011, at 11:32 AM, Warren Myers wrote:

> I'll second the Barracuda vote - they're very simple to administrer, and
> inexpensive to boot :)
> 
> WMM
> 
> On Thu, Feb 17, 2011 at 09:40, William Chandler <wcchandler at gmail.com>wrote:
> 
>> When I was at Savvis we used Barracuda for some of our local, internal
>> stuff
>> (around 500 employees, 500 servers).
>> http://www.barracudanetworks.com/ns/?L=en
>> 
>> 
>> 
>> On Thu, Feb 17, 2011 at 9:23 AM, Chris Bullock <cgbullock at yahoo.com>
>> wrote:
>> 
>>> We are looking to replace our opensource firewall/VPN and web filtering
>>> boxes
>>> with something more commercially supported (I have changed roles in my
>>> company
>>> and my boss wants me hands off and the rest of our IT department can not
>>> support
>>> our existing infrastructure)  I currently have a few RFPs out for
>> replacing
>>> my
>>> gear, however neither has come back with a turnkey solution as of yet.
>>> a few questions
>>> 1.  Can i get some recommendations of companies that do this kind of
>> work,
>>> on a
>>> large scale?  We have a fairly extensive network infrastructure so we
>> need
>>> a
>>> company that is used to complex design.
>>> 2.  The two companies that have gotten back to me, are suggesting Cisco
>> and
>>> Sonicwall.  I have no experience with Sonicwall, and my experience with
>>> Cisco
>>> was during the PIX/CatOS days, so I am a little out of the loop, we are
>> an
>>> HP
>>> ProCurve shop.  Pros, Cons of either
>>> 3.  Any suggestions for web filtering?  We currently are using squid for
>>> blocking our users from inappropriate and social networking sites.
>>> 
>>> Regards,
>>> Chris
>>> 
>>> 
>>> 
>>> 
>>> --
>>> This message was sent to: wcchandler at gmail.com <wcchandler at gmail.com>
>>> To unsubscribe, send a blank message to trilug-leave at trilug.org from
>> that
>>> address.
>>> TriLUG mailing list : http://www.trilug.org/mailman/listinfo/trilug
>>> Unsubscribe or edit options on the web  :
>>> http://www.trilug.org/mailman/options/trilug/wcchandler%40gmail.com
>>> TriLUG FAQ          :
>>> http://www.trilug.org/wiki/Frequently_Asked_Questions
>>> 
>> --
>> This message was sent to: Warren <volcimaster at gmail.com>
>> To unsubscribe, send a blank message to trilug-leave at trilug.org from that
>> address.
>> TriLUG mailing list : http://www.trilug.org/mailman/listinfo/trilug
>> Unsubscribe or edit options on the web  :
>> http://www.trilug.org/mailman/options/trilug/volcimaster%40gmail.com
>> TriLUG FAQ          :
>> http://www.trilug.org/wiki/Frequently_Asked_Questions
>> 
> 
> 
> 
> -- 
> Warren Myers
> http://warrenmyers.com
> http://twitter.com/volcimaster
> http://www.linkedin.com/in/warrenmyers
> -- 
> This message was sent to: Ron Kelley <rkelleyrtp at gmail.com>
> To unsubscribe, send a blank message to trilug-leave at trilug.org from that address.
> TriLUG mailing list : http://www.trilug.org/mailman/listinfo/trilug
> Unsubscribe or edit options on the web	: http://www.trilug.org/mailman/options/trilug/rkelleyrtp%40gmail.com
> TriLUG FAQ          : http://www.trilug.org/wiki/Frequently_Asked_Questions

More information about the TriLUG mailing list