Hi Chuck,
Cisco is bringing some very neat stuff to the Pix with the 7.0
version. With 7.0, a Pix 515 matches all the features of the N25 or
N50 that I can think of and also add some unmatched features like
virtual firewalls, active/active failover, and zero-downtime software
updates. PDM (5.0 now called ASDM) has also been significantly
enhanced to a point where I might consider using it instead of the
CLI.
Netscreen firewalls kick ass but Cisco is making a huge step forward
with this release. Would you mind sharing what you like in NS vs Pix?
NS 25/50 Datasheet
http://www.juniper.net/products/integrated/dsheet/110003.pdf
Pix 7.0 highlights
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_data_sheet0900aecd80225ae1.html
ASDM Overview
http://www.cisco.com/en/US/products/ps6121/products_data_sheet09186a008014871d.html
- Sylvain
On Wed, 16 Feb 2005 18:03:24 -0800, charles antrim
<chuck@securityfocus.com> wrote:
The Juniper Netscreen 25 is a fare better choice than any pix product. The
netscreen blows away the pix on any head to head features and functionality.
On 2/16/05 6:07 AM, "Tom Farrar" <tom_farrar@msn.com> wrote:
Depending on how much flexibility you demand from the firewall a good choice
is a PIX 515. Also a suggestion is to collate your FTP and webserve into
one, preferably a linux box â with the box you gain from the migration you
could build another linux box and stick squid and snort on that.
Another thing is to take into consideration what switch you are using, a
Catalyst 2950 would be a good buy for you internal lan.
Regards,
Tom Farrar
Data Centre Engineer
tom.farrar@it-ps.com
IT Professional Services
