I think we are getting off track here - the main issue is not always whether you can use command line or GUI interface. It is what will secure your network and offer you the options your network requires. This could be throughput speed, VPN capability, content filtering, encryption, etc. I think that certain firewalls are appropriate for certain networks. Not one firewall is going to fit every environment. It is important to write the security requirements and budget (unfortunately this does come into play) for your company and then go from there....
PIX - good solid box but difficult for just anyone to configure - imagine that. Once it is installed correctly though I usually don't hear to many complaints - there are PIX 10000 Series still working out there without problems - too bad they are EOL. Usually best with companies that have their own IT staff or a Cisco engineer that is easy to reach.
SonicWALL - the new product line is much better than the old one - increased speeds and concurrent connections. Some of the old SonicWALL's had issues. Not finding that as much but tech support leaves something to be desired. Better for small to medium corporations with not as complex of a network.
Netscreen - Have heard good and bad things about this but experience is limited to others information.
Checkpoint is a good firewall with those really large corps that have some money to spend since there is a lot more to set up then with a hardware based firewall. Also, since it is software based, the problem can lie with the O.S. or with the firewall. It is robust firewall though, with a lot of additional features that are nice.
Do You Yahoo!?
Try FREE Yahoo! Mail - the world's greatest free email!
