Can someone point me to some side-by-side comparisons of Astaro and other enterprise-class firewalls? Specifically Cisco PIX, Checkpoint FW-1 and Cisco PIX?
I got a CISCO PIX on our Brazil affiliate. Configuring one of those is a pain in the neck.
They have a graphical interface called PDM... let me tell you... is a bullsh*t. It is Java based Do I need to tell something else? PDM doesn't support all the commands you can enter in the configuration manually so (in our release of CISCO software) if you need VPN you cannot configure it on PDM since is not supported and if you configure it manually then you get a message on PDM saying that you cannot use the GUI any longer since there are unsupported commands in the configuration. Very funny.
There is another strange point about CISCO PIX. Each network has defined an ASA level (or something like ASA). This show how important is that network for you. So 100 ASA is the internal and 0 ASA is Internet the bad news are that many commands are not allowed going from lower ASA into bigger ASA. Usualy this is a proble from DMZ into internal.
Well I'm watting that CISCO PIX to be out of the accounting to crash it and buy another ASTARO license.
At the rest of lotacions we are implementing ASTARO.
you have to configure the pix via cli not via pdm. the security levels enhance the security, because you are forced to configure a working access-lists!
you have to configure the pix via cli not via pdm. the security levels enhance the security, because you are forced to configure a working access-lists!
