I didn't know that Sophos had gotten into the hardware world. That's very interesting, and I'll have to take a look at it.
Just as an aside - I think that wired end-point connectivity is going the way of the dodo, except for the most demanding loads, so it make a deal of sense for them to do that. Kurt On Wed, Feb 6, 2013 at 6:04 PM, Richard Stovall <[email protected]> wrote: > My bad. I bought a Sophos AP 30 to go along with the firewall hardware. > This AP alone was about 45% of the total cost of the project, but I still > saved a good chunk of change over the SonicWall TZ + SonicPoint solution > that I had been planning on buying before finding the Sophos home license. > > > On Wed, Feb 6, 2013 at 8:42 PM, Kurt Buff <[email protected]> wrote: >> >> So your wireless is served elsewise? >> >> Kurt >> >> On Wed, Feb 6, 2013 at 5:31 PM, Richard Stovall <[email protected]> wrote: >> > I chose to build a new system so it would be small and silent rather >> > than >> > use an old computer lying around the house. >> > >> > I went with: >> > >> > Intel D2500CCE fanless mini-ITX motherboard (Dual core 1.86 GHz Atom CPU >> > with dual Intel NICs onboard) >> > >> > 4 GB RAM >> > >> > 128GB Vertex 4 SSD >> > >> > It has been in 'production' for a couple of weeks now, and is stable and >> > very fast. I also really like having the content filtering and >> > antivirus >> > capabilities of a UTM firewall at home. >> > >> > The management interface is a little weird at first, but you get used to >> > it. >> > >> > I demo'ed the software in a VirtualBox VM for a week or so before >> > pulling >> > the trigger on the hardware expense. >> > >> > If anyone is interested, the page at Sophos describing the offering is: >> > >> > http://www.sophos.com/en-us/products/free-tools/sophos-utm-home-edition.aspx >> > >> > >> > >> > On Wed, Feb 6, 2013 at 3:20 PM, Kurt Buff <[email protected]> wrote: >> >> >> >> Our Sidewinders are EOL at the end of April, and my manager doesn't >> >> like >> >> them. >> >> >> >> He's a Cisco bigot, and wants ASAs in here. >> >> >> >> I'm fighting him to at least take a look at the Palo Alto platform, or >> >> perhaps the newest iteration of the Sidewinders (which are now called >> >> McAfee Enteprise Firewalls). >> >> >> >> That's an interesting tip on the Sophos solution. What did you use for >> >> the hardware? >> >> >> >> Kurt >> >> >> >> On Wed, Feb 6, 2013 at 11:59 AM, Richard Stovall <[email protected]> >> >> wrote: >> >> > I was going to suggest using the SonicPoint solution from SonicWall, >> >> > but >> >> > you've got Sidewinders, don't you? >> >> > >> >> > Does McAfee have anything like SonicWall's wireless solution where >> >> > it's >> >> > all >> >> > managed from the firewall? >> >> > >> >> > PS Sophos has this too, and they give their UTM firewall away free >> >> > for >> >> > home >> >> > use. Just bring your own hardware. I just switched to this the >> >> > other >> >> > day >> >> > and love it so far. I should write a blog post about it. (But then >> >> > I'd >> >> > have to create a blog...) >> >> > >> >> > >> >> > On Wed, Feb 6, 2013 at 2:36 PM, Kurt Buff <[email protected]> >> >> > wrote: >> >> >> >> >> >> All, >> >> >> >> >> >> Quite some time ago, I set up an unsecured guest VLAN in our >> >> >> network, >> >> >> providing wireless access to all of the sundry devices that staff >> >> >> and >> >> >> visitors carry. I set up a small FreeBSD machine to serve IP >> >> >> addresses >> >> >> via DHCP, and that was dead simple. >> >> >> >> >> >> It is a layer2 VLAN, traversing our backbone, and terminating on our >> >> >> corporate firewall. >> >> >> >> >> >> However, there are now other tenants in our building, and the subnet >> >> >> is getting too much bandwidth and address consumption - the range I >> >> >> set up is completely filled, and the VLAN is consuming about half of >> >> >> our Internet pipe, which is far too much for my comfort. >> >> >> >> >> >> I suspect the other tenants are leeching. >> >> >> >> >> >> What I've read of captive portals seems to indicate that the portal >> >> >> is >> >> >> part of the firewall. I could be wrong about that, though. >> >> >> Regardless, >> >> >> the >> >> >> corporate firewall will not be allowed to be part of this solution. >> >> >> >> >> >> The only other alternative I see right now is to set up a password >> >> >> on >> >> >> the SSID, and have the front desk hand it out to guests, after >> >> >> mailing >> >> >> it to staff, and I'm getting pushback on that from my manager. >> >> >> >> >> >> Does anyone have some ideas I could pursue on this? >> >> >> >> >> >> Thanks, >> >> >> >> >> >> Kurt >> >> >> >> >> >> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ >> >> >> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ >> >> >> >> >> >> --- >> >> >> To manage subscriptions click here: >> >> >> http://lyris.sunbelt-software.com/read/my_forums/ >> >> >> or send an email to [email protected] >> >> >> with the body: unsubscribe ntsysadmin >> >> > >> >> > >> >> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ >> >> > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ >> >> > >> >> > --- >> >> > To manage subscriptions click here: >> >> > http://lyris.sunbelt-software.com/read/my_forums/ >> >> > or send an email to [email protected] >> >> > with the body: unsubscribe ntsysadmin >> >> >> >> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ >> >> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ >> >> >> >> --- >> >> To manage subscriptions click here: >> >> http://lyris.sunbelt-software.com/read/my_forums/ >> >> or send an email to [email protected] >> >> with the body: unsubscribe ntsysadmin >> > >> > >> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ >> > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ >> > >> > --- >> > To manage subscriptions click here: >> > http://lyris.sunbelt-software.com/read/my_forums/ >> > or send an email to [email protected] >> > with the body: unsubscribe ntsysadmin >> >> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ >> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ >> >> --- >> To manage subscriptions click here: >> http://lyris.sunbelt-software.com/read/my_forums/ >> or send an email to [email protected] >> with the body: unsubscribe ntsysadmin > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
