On the way on choosing the right firewall, I got this invitation from IDC “”Battling Sophisticated Threats: Security Strategies For The Resilient Enterprise” IDC’s Asia/Pacific Security and Continuity Conference 2007″. I see list of many interesting vendor like Cisco, Shopos and Fortinet. What a fortune, just what I needed. Maybe after I attend the invitation, I can have more knowledge about the right firewall.
Hardware or Software?
I and my boss have different opinions about firewall. I’m not sure who is more right. My boss want simply a hardware firewall like Firebox, Cisco Pix, WatchGuard etc while I want software based firewall, specially the open source one, like Ipcop or Smoothwall.
He want a hardware firewall because of simplicity, while I can show him that software firewall can be also be simplicity, but he’s not convinced enough.
While I want software firewall because I want flexibility. I can choose my own hardware (processor, memory, hard disk, network card etc), and software. Free, and not limited with only one vendor.
So, I think this event can and may give me some new perspectives about hardware firewall.
One of the many interesting vendor is Fortinet.
Fortinet is a good hardware and software’s. In one single device that can protect your network almost from anything.
- Anti spam
- Anti viruses, spyware and malware
- Support chat applications like Yahoo messenger, MSN, ICQ
- Support peer to peer file sharing like LimeWire
- And many others
The price is reasonable but we also need to pay subscription every year to get the latest update of their softwares.
The presentation is also excellent and very selling.
But, it has no hard disk.
No hard disk, so there is no log, no log mean no reports, no reports mean hated by my management.
Fortinet also offer another device for logs and reports purpose, but then I have to have two devices. One device is for firewall and the other device is for logs and reports. I like to show this to my boss and see if he like it or not 🙂 .
Hardware firewall is good, but somewhat limited. That’s why my first option is to use software firewall. But maybe, different people have different opinions, just like me and my boss.
For simplicity, choose hardware firewall.
For flexibility, choose software firewall.