Upcoming Events

Cloud Connect
Santa Clara
Feb 13-16, 2012

Cloud Connect brings together the entire cloud eco-system to better understand the transformation we're experiencing and promises to be the defining event of the cloud computing industry. Learn about the latest cloud technologies and platforms from thought leaders in Cloud Connect’s comprehensive conference.

Register Now!

More Events »

Subscribe to Newsletter

  • Keep up with all of the latest news and analysis on the fast-moving IT industry with Network Computing newsletters.
Sign Up

Vendor NewsFeed

More Vendor NewsFeed »

Email Email Print Share


Security Appliances

Posted by Hugh Smith, with Scott Thomas and the Calpoly NetPrl Testing Team
March 12, 2004

Tags: , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ,

Channel: Other, Data Protection

The Office

We put on our small-business hats and asked, "What functionality is important to protect our small office with a minimum of IT support pain?" Although we did significant load testing on the participating devices, we knew that for smaller offices, network load is not as important as ease of configuration and a comprehensive feature set. We kept this in mind while developing our test plan. First, we outfitted our small-office network with one WAN interface and one public IP address. Internally, our small office had a local network with private IP addresses and a DMZ for Web, e-mail and FTP servers. Our LAN users were configured using DHCP, and the security devices provided NAT (Network Address Translation) for both DMZ and LAN traffic. The devices also were responsible for port forwarding of traffic between the WAN and the DMZ servers.

The Features

Although not even the best all-in-one device will relieve all your security woes--you'll still have patching to do and need desktop firewalls--we were happy with the devices overall. (For a checklist of other bases to cover, see "Appliances Aren't a Cure-All,".)


Security Appliance Features


click to enlarge

The devices sat between us and the outside world, so they had to have firewall features, including traffic filtering, NAT and port forwarding. Stateful firewall features for preventing DoS (denial-of-service) attacks, like syn and smurf, are even better. In addition, some small organizations may want these devices to act as a DHCP and DNS server. All the products provided the basic firewall capabilities we were looking for, but the Fortinet and SonicWall devices can't act as DNS servers, and the Symantec box doesn't provide DHCP functionality.


Page:  1 | 2 |3 |4 |5 |6 |7 |8 |9 |10 |Next Page »

Related Reading

News

More News»

Most Popular

More Popular»

Commentary

More Commentary»

On the Web

More On The Web»

More data-protection Insights

White Papers

More >>

Webcasts

More >>


Currently we allow the following HTML tags in comments:

Single tags

These tags can be used alone and don't need an ending tag.

<br> Defines a single line break

<hr> Defines a horizontal line

Matching tags

These require an ending tag - e.g. <i>italic text</i>

<a> Defines an anchor

<b> Defines bold text

<big> Defines big text

<blockquote> Defines a long quotation

<caption> Defines a table caption

<cite> Defines a citation

<code> Defines computer code text

<em> Defines emphasized text

<fieldset> Defines a border around elements in a form

<h1> This is heading 1

<h2> This is heading 2

<h3> This is heading 3

<h4> This is heading 4

<h5> This is heading 5

<h6> This is heading 6

<i> Defines italic text

<p> Defines a paragraph

<pre> Defines preformatted text

<q> Defines a short quotation

<samp> Defines sample computer code text

<small> Defines small text

<span> Defines a section in a document

<s> Defines strikethrough text

<strike> Defines strikethrough text

<strong> Defines strong text

<sub> Defines subscripted text

<sup> Defines superscripted text

<u> Defines underlined text

Network Computing encourages readers to engage in spirited, healthy debate, including taking us to task. However, Network Computing moderates all comments posted to our site, and reserves the right to modify or remove any content that it determines to be derogatory, offensive, inflammatory, vulgar, irrelevant/off-topic, racist or obvious marketing/SPAM. Network Computing further reserves the right to disable the profile of any commenter participating in said activities.

 
Disqus Tips To upload an avatar photo, first complete your Disqus profile. | View the list of supported HTML tags you can use to style comments. | Please read our commenting policy.
 

Research and Reports

Hypervisor Derby
August 2011
Network Computing: August 2011

Video


WATCH: Box.net CEO Aaron Levie Takes On Microsoft

WATCH: HP Chairman Ray Lane: Focus On Innovation

WATCH: How OpenFlow Changes Networking


View All Videos
Previous Page First Page Second Page Third Page Next Page

Most Popular

Stories Blogs

More Stories »

Featured Whitepapers

Featured Reports

BlogRoll

TechWeb Careers