The PIX FW is an excellent and very secure (well as secure as the administrator) firewall. It is an OS based product but has an OS that was developed specifically for FW use...translation: It is not a general purpose OS like you will find in most FW products. This feature does help increase the overall security of the product.
I personally stay away from recommending CheckPoint because some like to run it on Windows....go figure. SonicWall, I have been less than impressed with their reliability. Cyberguard is quirky and I have not worked with NetScreen but I here it is a good product. In any event, when choosing a FW I would always try to stay away from a product that uses general purpose OS (Windows, *NIX) no matter what a review states. Just my $.02 You can probably find some good third party FW reviews on nwfusion.com After reading reviews you may want to search cert.org for known security issues. -Mark -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Monday, June 30, 2003 6:36 PM To: Joseph; [EMAIL PROTECTED] Subject: Re: Firewall Comparisons > -----Original Message----- > From: Joseph [mailto:[EMAIL PROTECTED] > Sent: Friday, June 27, 2003 07:59 PM > To: [EMAIL PROTECTED] > Subject: Firewall Comparisons > > I'm looking for a site that has some good firewall comparisons. I'm looking > for more than just throughput; I would like a comparison of how secure they > can be. How "well built" the OS is on them? How do their stateful > filtering mechanisms compare? Also, if anyone has had any good/bad > experience with these firewalls in particular, please let me know. While you're at it, start a debate on preferred editor, shell, scripting language, and to top it off, Mac vs. PC (g) Seriously, Firewalls get as religious a following behind them as any of the other Computer Debates/Wars. My **PERSONAL** preference is to go with a firmware-based box, as opposed to a software-based box. Harder to hack, harder to exploit. For that alone, I'd say the NetScreen. I've got experience with SonicWall products as well, and for that reason, do NOT recommend their firmware based products. . . --------------------------------------------------------------------------- Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts! The Gartner Group just put Neoteris in the top of its Magic Quadrant, while InStat has confirmed Neoteris as the leader in marketshare. Find out why, and see how you can get plug-n-play secure remote access in about an hour, with no client, server changes, or ongoing maintenance. Visit us at: http://www.neoteris.com/promos/sf-6-9.htm ---------------------------------------------------------------------------- --- Incoming mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.493 / Virus Database: 292 - Release Date: 6/25/2003 --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.493 / Virus Database: 292 - Release Date: 6/25/2003 --------------------------------------------------------------------------- Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts! The Gartner Group just put Neoteris in the top of its Magic Quadrant, while InStat has confirmed Neoteris as the leader in marketshare. Find out why, and see how you can get plug-n-play secure remote access in about an hour, with no client, server changes, or ongoing maintenance. Visit us at: http://www.neoteris.com/promos/sf-6-9.htm ----------------------------------------------------------------------------
