[prev in list] [next in list] [prev in thread] [next in thread] 

List:       security-basics
Subject:    Re: Internal Firewall on GigaBit Network
From:       Jeremy Stinson <jstinson () quadrix ! com>
Date:       2001-08-30 0:30:56
[Download RAW message or body]

One product that I would suggest is the NetScreen 500.  This product has been
tested to be faster than most Cisco PIXs (see tolly.com).  They only support
packet filtering so if you have the need for proxies then I would look at
CheckPoint.  They are shortly coming out with a new code release that will
support active/active HA if that is a requirement.

http://www.netscreen.com/products/systems.html

IMHO

Jeremy



Carmelo Floridia wrote:

> Hi,
> I'm going to design a Firewall Architecture to divide two internal network
> segments taht exchange a lot of information.
>
> Firewall has to connect to a Gigabit network, manage a lot of traffic and
> implement a VPN (about 100 clients).
>
> I thought:
> - Using Cisco PIX 535 that support Gigabit, but I hear that it doesn't
> manage properly VPN,
> or
> - Using Checkpoint with any product for load balancing (Arrowpoint, CSS) in
> order to have scalability and VPN
> or
> - Use two firewall-1 one for VPN and one for Packet filtering
>
> any comment or suggestion about products or tecnology??
> best regards
> Carmelo

[prev in list] [next in list] [prev in thread] [next in thread]