The best firewall is ....

Fortinet FortiGate 200A

Contents
Introduction
 Cyberguard SG710
 Fortinet FortiGate 200A
 Juniper ISG1000
 Lucent Brick 150
 Netgear FVX538
 Network Box RM-300
 SonicWALL PRO 5060c
 Symantec SGS 5420
 WatchGuard X1000
 Specifications
 How we tested
 Editor's choice
 About RMIT

Fortinet provided a very sleek black and silver number. At the front of the 1RU unit there are eight Ethernet ports (four internal, two DMZ, and two WAN), two USB ports, a console port, and a power LED. Also on the front there is a small backlit LCD and four buttons used for navigation around. The rear houses a small fan, a power switch, and an IEC power socket. Construction of the unit is excellent and the quality of workmanship and design is great.

The operator can select and set the IP addresses for the internal and external interfaces. Once on the network from the inside, the administrator can point a browser at the designated IP address using HTTPS and access the administration console.

A possible concern is that the default admin password is blank, however, one would assume in this day and age most security administrators designated the task of configuring the company firewall would immediately set a secure password.

The console itself is well laid out and very easy to navigate and manage. Primary actions are performed using the menu system on the left hand side. There is also a neat shortcut menu at the top of the screen enabling the administrators/operators to access a few helpful items, such as a Java console session to the CLI, (yes, for those hardcore CLI techs out there the Fortinet 200A can be accessed through a console), another handy shortcut is one to a basic setup wizard.

A plethora of software add-ons are available for licensing -- the box we were shipped had spam, Web and virus filters as well as intrusion and prevention systems.

Filtering and reporting is quite comprehensive, of particular note is the granularity with which one can configure the log filter, exporting various events and logs to different logging/reporting systems as needed.

Overall, a very refined and developed system, certainly worthy of shortlist for trial and evaluation. It is relatively straightforward and easy to use -- as a security appliance should be.

Product FortiGate 200A
Price AU$12,580
Vendor Fortinet
Phone 02 8923 2555
Web www.fortinet.com
 
Interoperability ½
Good range of features and management options.
Futureproofing
Good level of logging/reporting available as well as a decent range of options.
ROI ½
Good pricing considering available options and features.
Service
12 months appears to be average for these devices.
Rating ½
Fortinet FortiGate 200A

< Prev 1 2 3 4 5 6 7 8 9 10 11 12 13 14 Next >

Like this article? Click below to send it to your mobile for free!

Talkback 22 comments

  1. Checkpoint Anonymous -- 09/08/05

    How can you test all firewalls and leave the marketleader out ? All these are toys ! :)checkpoint rules

  2. Hardware firewalls Craig Ringer -- 10/08/05

    This review appears limited to dedicated hardware firewalls.

    That's not the extent of the offerings available. In particular, *BSD and Linux have very useful built-in firewalls that can be used to protect a network. You spend more time setting it up, but get more control and pay less for the hardware.

    1. There are NO such things as Hardware Firewalls Craig S Wright -- 05/09/05

      There are NO such things as Hardware Firewalls

      Just pre-packaged boxes. Even the PIX is just an Intel based host with an OS

    2. Rubbish... Anonymous -- 15/10/05

      The Juniper range contain dedicated purpose built chips.

    3. Hardware Firewalls Donovan Marsden -- 21/05/07

      There are such things as hardware firewalls This prepackaged boxes contain firmware (hardware) not software so hardware firewalls refers to media. Not to mention that all it's electronics are dedicated to the firewall job!

  3. ISA Firewall? Anonymous -- 15/08/05

    Excuse me, but where was the ISA firewall in your test? Was there a reason for leaving the ISA firewall out?

  4. ISA Firewall? Anonymous -- 15/08/05

    Excuse me, but where was the ISA firewall in your test? Was there a reason for leaving the ISA firewall out?

    1. Talk is only about Hardware firewall. Vijay -- 18/05/07

      here the talk is only about the hardware firewall not about the software firewall...

      ISA 2000 till 2006 plays good role in application layer firewalls, when u talk about the hardware level, packet filtering and ip spoofing etc we need to go for hardware based firewall...

    2. ISA Appliances Gladys I. Rodriguez -- 03/08/07

      I think everyone forgets that ISA is also is also sold as an appliance: http://www.microsoft.com/isaserver/howtobuy/hardwaresolutions.mspx, because people say well in runs on top of Windows OS. But Cisco runs on top of their IOS, Juniper has DX OS, WatchGuard has Firebox X, etc. Microsoft just provides the extra control for what type of box the users choose to run their Firewall.

  5. Why didn't you guys include the Check Point offering in your comparison of Firewall products? They have a very good end to end security offering and they play very hard in the enterprise space (and have also brought the same technology down to the mid tie Anonymous -- 22/08/05

    Why didn't you guys include the Check Point offering in your comparison of Firewall products? They have a very good end to end security offering and they play very hard in the enterprise space (and have also brought the same technology down to the mid tier and SMB products as well)

  6. Astaro Firewall not listed?! Anonymous -- 29/08/05

    I can't believe you would do a round up with out including Astaro Firewalls in the mix. They are by far the most powerful and flexible for business.

    www.astaro.com

  7. Cisco Anonymous -- 29/08/05

    WHAT ABOUT CISCO'S PIX???

  8. No Kickbacks from the Big Guns! Anonymous -- 08/09/05

    noice, no checkpoint, pix nor isa. What creditability does this mag have?

  9. Derek Jolowisz Anonymous -- 29/09/05

    :-)

  10. Software firewall packages Anonymous -- 25/11/05

    would have been nice to see products like smoothwall, included.

  11. Checkpoint Anonymous -- 09/07/07

    I'm glad some of you are getting Checkpoint to work. I can't get onto the net, firmware upgrades have now prevented me from talking to the firewall. I using a $10 hub, seems to work better. Asking for an RMA right now.

  12. Sonic What, Watchguard!?!?! Anonymous -- 04/09/07

    Can't believe watchguard was even mentioned this cannot even be compared to the likes of Juniper ISG, Checkpoint and ASA/PIX in a corporate environment.

    AS
    Sell my house
    www.cheshiremoves.com

  13. Symantec Anonymous -- 11/10/07

    Has anyone ever tried to contact Symantec about the Symantec SGS 5420?

    I've tried many times and no one there knows anything about it - they just transfer me to some guy in an Indian call centre trying to sell me antivirus!!!!!!!!!!!!!!!!!!

    anyone got a real number to call?

    Cheers

    Justin

    1. Symantec support Anonymous -- 18/02/08

      Dont waste your time, they are dropping firewall support in 2009.

    2. Symantec SGS - What to do with old box? Anonymous -- 27/09/08

      We have SGS v3.x appliance which will be retired next year. Is it possible to install some thing like 'Astaro' into the box since Symantec only believes in 'end-point' security?

  14. no Cisco? Anonymous -- 29/05/08

    there are probably more Cisco firewalls installed in the world than all other brands combined. Not to say Cisco firewalls are the best, but to ignore the biggest player?
    btw, I have ASA 5505 at home, loving it.

  15. Cisco ASA 5505 Anonymous -- 25/06/08

    Most of us can't afford a $600+ firewall at home.

Add your opinion


Back to top

Featured