sushid
join:2002-10-31
Arlington Heights, IL
| reply to Ult
Re: Sonicwall / Netscreen / Cisco / other?
Thanks, Ult, for the info! I have actually figured out the obvious differences between the XP and XT, I was wondering if there were unobvious ones.
BTW, I read an independent evaluation of the Netscreen-5XP and other, SERIOUS players (e.g. a $14,000 Cisco), and the 5XP came in only SECOND in throughput for encryption and bandwidth management. I was impressed.
said by Ult  :
(Netscreen) has the GUI to match watchguard and checkpoint, and my favorite is it has onboard IDS sensors (so if someone does a ping sweep or searches for open ports it'll notify you)
I liked the Netscreen GUI at first, too -- then I saw SonicWall's which seemed even *more* intuitive.
Also, can the Netscreen do any kind of ONBOARD content filtering or replacement -- e.g. stream re-write, blocking based on keyword or URL, etc. -- without requiring an external server like NetSense? Sonicwall's can be seen at the management interface www.sonicguard.com/products/demo/index.html , click "Filter," then "Keywords".
I think both Netscreen and Sonicwall have the same IDS and reporting abilities -- can anyone confirm / deny? quote:
However, these two units don't, as far as I know, offer a DMZ port.
As for the PIX 501, b/c it's based on the PIX platform, it's highly flexible and powerful, but ya gotta know the CLI very well.
I understand that neither have a DMZ port, and that with neither would I get a *true* DMZ... I'd like to be able to put a server in the LAN and know that it can people can get through to it as necessary without putting the other LAN boxes at risk, however. Sonicwall seems to offer that thru the "LAN out" option, though (in the management interface, click "Tools".)
I think you've nailed it against Cisco for me. Just about everyone -- even Cisco affecionados -- have said what you've said. I get the message. 
Thanks for the long note, Ult. Any info on the Netscreen in the areas I've indicated would be appreciated. (At least I understand what Sonicwall offers, now!)
BTW, I just realized it might look like I'm trolling for Sonicwall or SonicGuard sales...nope. Just a confused consumer wishing he didn't have to register at a website just to see an interface, and that these manufacturers could provide more than "datasheets for dummies." 
[text was edited by author 2002-12-12 23:42:30] |
