THE OFFICIAL BLOG OF THE SBS DIVA

We use Sonicwall

Reasonably priced for the SMB space and some decent features

Support while not spectacular is ok

This is a great topic Susan. I can tell you what I believe to be true, and as the future Secty of State, I will not take sides :)

This weekend I am wrapping up Chapter 6 of our new SBS 2008 book that is mere days away from going to press. This is the security chapter and I am testing Calyptix, SonicWall and WatchGuard, Philip Elder is testing Untangle and ISA.

The conclusions we are seeking to arrive at are: does Brand X workw ith SBS 2008? Do far, I have the most experience with Calyptix (ran it for 38-days straight on my SPRINGERS test network and I am pleased, epsecially with the short Getting Started Guide as I have a short attention span.

I have just completed my testing of the SonicWALL NSA 240 and I really liked it being set to static IP on the X0 (LAN port) so the SBS 2008 machine didn't get upset). It worked as expected.

I am just now testing the WatchGuard FireBox Edge device and, so far, so good. I will have this testing completed this evening and post up more information. So far I like the fact WatchGuard is in downtown Seattle within walking distance form where the Bainbridge Island ferry docks when I come into town (hi guys!) :)

Philip and I both worked with Untangle successfully a few months ago in a SBS 2008 \ Untangle webinar that was well attended and the Untangle solution, based on the big O (open source) worked fine.

Philip is writing the section on using ISA as he feels passionate about this MS-based solution. I will ask him to post up here.

So the point is this - we have, are and will have completed our "intriductory" testing on all popular SBS 2008 firewall solutions (that we could get our hands on) and are likely able to render a verdict that "they all worked"

Then it is customer choice (in my opinion). Take our research, be a smart shopper, compare at least two options to protect your SBS network and best of luck.

BTW - our advanced SBS 2008 book in mid-2009 while have much more exhaustive testing aking to a "shoot-out" with a scorecard bot for our introductory book, we simply wanted to introduce the community to what's available, what we tested and for God's sake USE  SOMETHING to protect your SBS 2008 network.

Thanks Susan - harrybbbbb

I'm a fan of Cisco's ASA 5505. Sure, they used to be thousands of dollars for a firewall, but the lights have come on at Cisco is more recent years. The ASA's a very capable device, pretty easy to manage and has a nice dashboard for the admin who needs to do any troubleshooting (ie, external site-to-site links).

They can be found on Newegg for as little as $375.

We went through the same shootout Harry is doing for his book, and we came to the same results as Amy - the Calyptix www.calyptix.com Access Enforcer is the unit we are rolling out and have had great success with it.

Kevin

From Calyptix this weekend: "At this time we are working on export licenses for a number of international countries. The process is not fast because of the nature of our product, but we hope to have it completed in 2009."

So that's them off the shortlist, for me in the UK.

Next?!

Kerio WinRoute Firewall has more integrated features, much easier to administer and half the price of ISA. It's software so it integrates well with SBS and it also works with AD. The web reporting is a tool that all CEO's and business managers will love.

www.kerio.com/sbs-security.com

Doh! I messed up on the URL

www.kerio.com/sbs-security.html

Fortigate's from Fortinet -(http://www.fortinet.com)- is also absolutley great appliance with great support!

Features :- Firewall, VPN, Intrusion Prevention, Antivirus, Web Filtering and Traffic Shaping

Any update on the Firebox Edge with SBS 2008?  Having issues getting past the connect to the internet wizard because of the DHCP server on the edge that cannot be disabled.

Any chance Astaro will be in the mix of evaluated appliances?