As someone that has inherited around 150 Stonesoft firewalls, I would say stay away. Far, far away... The features they tout are great... Usage in the every day world... plenty of work to do in that space... If I'd have been here when we were redesigning our security posture, they would not have made the cut...
On Wed, Dec 3, 2014 at 10:00 PM, Kurt Buff <[email protected]> wrote: > PA pricing is an obstacle, especially the way they break out every service > - web filtering, AV/malware detection, etc - which really starts to add up. > > Configuration is confusing until you get used to it, but I think it's less > complicated/cumbersome than the SonicWalls I've dealt with (which aren't > firewall, but SSL VPNs, so that might be apples/oranges). > > However, I do like our PAs - though it was a close run between them and > the McAfee/Stonesoft offering, and I think that if you're looking at the > PAs, the McAfee offering is worth a look. > > Kurt > > On Wed, Dec 3, 2014 at 10:36 AM, Andrew S. Baker <[email protected]> > wrote: > >> I like the PA technology, but I'm still disgruntled about the PA pricing >> (and initial configuration complexity) for all but larger enterprises... >> >> >> >> >> >> >> *ASB **http://XeeMe.com/AndrewBaker* <http://xeeme.com/AndrewBaker> >> *Providing Virtual CIO Services (IT Operations & Information Security) >> for the SMB market…* >> >> >> >> On Wed, Dec 3, 2014 at 12:34 PM, Kevin Lundy <[email protected]> wrote: >> >>> Palo Alto. Can be expensive. When I last purchased though, it was >>> cheaper to buy the PA, than to replace our outdated ASAs with new versions >>> and renew our Websense subscription. You have to let the sales folks know >>> you are looking at competitive products. >>> >>> It is my opinion that the PA platform is the most secure gateway device >>> out there currently. Additionally they have an add-on service >>> (Wildfire) that can evaluate traffic for zero day threats and IPTs. >>> >>> On Wed, Dec 3, 2014 at 11:52 AM, Stefan Jafs <[email protected]> wrote: >>> >>>> I’m going around in circles trying to make a decision on a new Firewall >>>> and Web filtering appliance. >>>> >>>> >>>> >>>> We currently have the SonicWall NSA240 * 2 for HA and iPrism for >>>> Webfiltering. We have increased our speed on Rogers fibre to 200 / 200 Mbs, >>>> the SonicWall is only 100 Mbs. Also the iPrism can’t handle our 300 + users >>>> any more, delays when trying to open a web page. >>>> >>>> >>>> >>>> So I have been looking at Cisco ASA, upgraded SonicWall, Barracuda, >>>> Fortinet and Sophos SG 330. >>>> >>>> >>>> >>>> Cisco – looks very complicated to setup and $$$ >>>> >>>> SonicWall – probably ok with a separate Web filtering appliance, easy >>>> to install can upgrade current configs. >>>> >>>> Barracuda – looks good, Googling and reviews not so good. >>>> >>>> Fortinet – looks ok >>>> >>>> Sophos – looks good on paper and I already have Sophos endpoint >>>> protection, leaning towards this solution. >>>> >>>> >>>> >>>> Anyone that can give me real hands on recommendations? >>>> >>>> >>>> >>>> Thanks >>>> >>>> >>>> >>>> __________________________________ >>>> >>>> *Stefan Jafs* >>>> >>>> >>>> >>> >>> >> >
