So far I guess you have to look at several vendors.
Pretty much everybody out there is offering this kind of products:
You've in the list of offers major firewall players like Check Point, Cisco
or Juniper. You have AV vendors like Symantec. You have traditional IDS
vendors like ISS. You have other guys like SonicWall (that come from selling
small FW/VPN boxes), Fortinet, SecureComputing, Stonesoft (these ones come
from HA/LS). And I'm sure there are more vendors out there that I'm leaving
out... - so, your job is not that easy...
Some of those vendors define UTM as FireWall/VPN/IPS, some of them add to
the basic list AV. Some of them offer URL Filtering or AntiSpam as well...
Please notice more "features" in the list doesn't really mean better
security. Some have very good Antivirus but crappy FW. Others better IPS and
crappy AV, and so on... - so take the list of things you really need as
"basic" (in my opinion FW+IPs+AV would be the very basic UTM feature set,
but that's my personal opinion) and see which vendor offers you the best
possible on those you decided. Then look after on the nice-to-have
features...
UTM is a good thing, but as commonly happens in security, it is not a
"one-size-fits-all" thing. It is not for everybody: I still find
medium-to-big organizations happier and more comfortable with a true
best-of-breed solution that can do the very best job on each possible thing
and can adjust to their specific (some times very specific) needs. And as
well remember UTM is not "yout-total-security-in-a-box" as some people
pretend to sell. From just common sense, one cannot possibly be the
very-very-very-best on every possible thing...
HTH.
- Martín.
On 11/18/05, Zachary Richmond <zfrichmond@arrtmfg.com > wrote:
I have looked at some of the other UTM appliances, but not in depth. Is
there one that you would recommend looking at?
Zak
-------- Original Message --------
Subject: Re: ISS Proventia Integrated Security Appliance
From: Mark Teicher <mht3@earthlink.net>
Date: Fri, November 18, 2005 6:34 am
To: Zachary Richmond < zfrichmond@arrtmfg.com >
have you looked at the other UTM appliances available from the various
other vendors
-----Original Message-----
From: Zachary Richmond < zfrichmond@arrtmfg.com>
Sent: Nov 17, 2005 11:12 AM
To: firewalls@securityfocus.com
Subject: ISS Proventia Integrated Security Appliance
Zak
Zachary Richmond
Systems Engineer
Arrt Manufacturing, LLC
Hello everyone,
I was wondering if anyone out ther has experience with ISS's
Proventia
product line. If you are not familiar :
http://www.iss.net/products_services/enterprise_protection/proventia/m_series.php
What are your thoughts on this particular device? What about other
similar integrated security solutions? I know that it might not be
the
best thing to "put all your eggs in one basket", so to speak, by using
an all in one appliance. However, I have a limited buget, limited
time, ... you all know what I am talking about. The real trouble is I
am handling ALL aspects of computing technology for my company ranging
from software/web developer, sys admin, network admin (yes I do the
cabling too), you get the picture. Now, I would love to be able to
have the time to have a firewall + IDS + etc... setup on, for
instance,
a properly configured SELinux box (which I still might do BTW), but a
semi-managed solution is very appealing to me time-wise (my time) and
staff-wise (me). Any help along these lines is greatly appreciated.
Current usage is :
1) Workstation web access
2) WebDAV server through HTTPS
3) SSH tunneling
Additional future usage :
1) Web application server ASP.NET (to be moved from remote host to
apache with mod_mono)
2) Remote/Mobile office locations
If you need to know more, please let me know. Thanks everyone,
Zak
Zachary Richmond
Arrt Manufacturing, LLC
--
--
- Mi página web: http://gama.fime.uanl.mx/~mhoz/
<http://gama.fime.uanl.mx/%7Emhoz/>
* "Somos consecuencia del pasado, y causa de nuestro futuro."
* "Este mundo no nos ha sido legado por nuestros padres, sino lo hemos
recibido prestado por nuestros hijos..."
