Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 22 replies
  • Subscribers 9 subscribers
  • Views 57292 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Next best UTM product recommendations?

MW

We have begun our corporate search for the next great UTM product . 


With the writing on the wall for the UTM series going EOL in the next few years, I was wondering what other firewalls people have had good experience with?  We will be replacing our ageing 525 HA cluster but also need to select a product we use for our customers.   We like to eat our own dog food before we ask our customers to purchase our recommended firewalls.

So, whats out there?  We have tried the sonicwalls and they use the same per policy paradigm crap used by the SophosFS/Cyberroam. 


We need a solution that scales from SMB up to the enterprise space.  And home based usage would be a bonus too.

Ideas?




[locked by: Scott_Klassen at 10:50 AM (GMT 0) on 16 Jan 2016]
Parents
  • 0
    Also - as for watchguard..

    I have a few: CLUNKY would be my best description.

    Also, get this:
    I have a customer that has alarm panels out in the field. They can contact the central station, BOUND for ANY port in a range of 1000 ports, but ONLY COMING FROM a specific SINGLE SOURCE port. Watchguard firewall rules DO NOT allow for filtering on SOURCE port!!! They LOG the source port, but there is no way to filter on it. I escalated my issue to the corporate office and talked to the head developer and a board member of the corporation. I was told flat out that they see no need for the ability to filter on the source port of an incoming packet.... given the very clunky interface and that fact, I walked away.
Reply
  • 0
    Also - as for watchguard..

    I have a few: CLUNKY would be my best description.

    Also, get this:
    I have a customer that has alarm panels out in the field. They can contact the central station, BOUND for ANY port in a range of 1000 ports, but ONLY COMING FROM a specific SINGLE SOURCE port. Watchguard firewall rules DO NOT allow for filtering on SOURCE port!!! They LOG the source port, but there is no way to filter on it. I escalated my issue to the corporate office and talked to the head developer and a board member of the corporation. I was told flat out that they see no need for the ability to filter on the source port of an incoming packet.... given the very clunky interface and that fact, I walked away.
Children
No Data