Next-gen firewalls require external visibility tools

Knowing what's happening on your network is a pre-requisite to controlling the traffic. We call that visibility because it combines all of the information the firewall knows, including session and application information, traffic volumes, and rate information, into a way to "see" into your network -- to give you visibility.

By Joel Snyder | 07 May, 2012 14:39

Tags: sonicwall, security, Next-Generation firewall, Firewall & UTM

How we tested next-generation firewalls

We tested next generation firewalls by looking at seven separate areas that we felt would be important to network managers trying to deploy these products in enterprise networks.

By Joel Snyder | 07 May, 2012 14:39

Tags: security, Next-Generation firewall, Firewall & UTM

Palo Alto next-gen firewall stacks up well

Palo Alto Networks has bet everything on being a next-generation firewall. Without the next-generation hook, Palo Alto has little chance at breaking into the established world of firewalls, and they've done a good job at defining the category on their own terms.

By Joel Snyder | 07 May, 2012 14:39

Tags: security, palo alto networks, Palo ALto, next-generation firewalls, Gateway, Firewall & UTM

SonicWall stands tall in SSL decryption testing

If one of the main advantages of a next-generation firewall is application and protocol identification and control, then SSL decryption is a basic requirement. We looked at the SSL decryption capabilities of the next-generation firewalls to see how well they would be able to discover applications, protocols, and URLs hidden within encrypted connections.

By Joel Snyder | 07 May, 2012 14:39

Tags: ssl decryption, sonicwall, security, next-generation firewalls, Firewall & UTM

Fortinet has highest catch rate in IPS testing

We tested the intrusion prevention capabilities of each of the next-generation firewalls to determine how well they work and how the IPS integrates with system management.

By Joel Snyder | 07 May, 2012 14:39

Tags: security, next-generation firewalls, IPS, intrusion prevention systems, IDS, Firewall & UTM

Cisco impresses with UCS

If you're tempted to think of Cisco's Unified Computing System (UCS) as just another blade server — don't. In fact, if you just want a bunch of blades for your computer room, don't call Cisco — Dell, HP, and IBM all offer simpler and more cost-effective options.

By Joel Snyder | 19 December, 2011 17:27

Tags: Cisco, Configuration / maintenance, Data Center, dell, hardware systems, IBM, server, server blades, ucs, Unified Computing System

Cisco UCS pricing: It's complicated

As with any server product, there are lots of ways to configure UCS, including different levels of CPU, memory and storage. Cisco has a 29-page document to help you get it right, and 29 pages are not overkill. To get an idea of what this might cost, we configured two separate systems: one with 40 dual-socket blades, and another with 80 of the same blades.

By Joel Snyder | 19 December, 2011 17:27

Tags: Cisco, Configuration / maintenance, Data Center, hardware systems, Intel, server, ucs, Unified Computing System

Network access control in a nutshell

Twelve leading NAC products put to the test

By Joel Snyder | 22 June, 2010 08:43

Tags: network access control (NAC), security

Cisco's NAC goes off track, customers taken aback

As the most important supplier of network infrastructure to enterprises, Cisco's NAC products are a natural point of curiosity for network managers. Unfortunately, though, Cisco's approach to NAC has been riddled with in-fighting, false starts, delayed product releases, and a good dose of chaos and confusion.

By Joel Snyder | 24 May, 2010 15:31

Tags: Cisco, network access control (NAC)

Internet radio appliances roundup

Web-based applications and products like Apple's iTunes have made it easy to turn a laptop or a desktop into a music player. At the same time, thousands of radio stations are re-broadcasting their audio over the Internet to anyone who wants to listen. But what if you want to listen to, say, modern jazz from Mali or pop from Paris without dragging around a laptop? Enter the Internet radio: an appliance that looks like a radio and has an antenna -- but connects over Wi-Fi to the Internet, and streams audio to speakers.

Five great Wi-Fi Internet Radios

While Web-based music offerings from Apple (iTunes) and others have made it easy to turn a laptop or desktop into a music player, what if you want to listen without dragging around your PC? Enter the stand-alone Internet radio, which looks like a radio and has an antenna, but connects via Wi-Fi to the Internet and streams audio to speakers. We recently tried out five such devices. Check the slides to see what we thought.

Can ACLs and NAC mix for security success?

Most network equipment vendors are ready to up the ante in terms of how their gear can control access in a NAC deployment.

Interop Labs: Microsoft gets NAC act together

The world of network access control is being drawn, irresistibly, into Microsoft's orbit now that the Redmond giant's full repertoire of Network Access Protection client, server and policy components are out there in the real world.

UTM and IPv6: Do they mix?

IPv6 is the writing on the firewall.

SonicWall smashes speed records

Last month, SonicWall rolled out its next-generation unified threat management firewall appliance geared for the enterprise. In our exclusive test of the Network Security Appliance E7500, results show that SonicWall has, indeed, crashed through the speed barrier.