Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
General Security Discussions
Hardware UTM firewalls for home and small business.
Message
<blockquote data-quote="MacDefender" data-source="post: 916862" data-attributes="member: 83059"><p>I've dabbled in this field a lot. They're hard to rank but this is roughly my ranking:</p><ol> <li data-xf-list-type="ol">Sophos UTM 9: By far my favorite in terms of functionality and UI for a home UTM. I don't recommend using it anymore since the maintenance has gone pretty stale on it.</li> <li data-xf-list-type="ol">Fortinet "F" series (40F, 60F, 80F). Unless you have symmetric gigabit, the 40F or 60F should suffice. It has a ton of functionality and ridiculous throughput even with all features turned on. Downsides are: It has a pretty steep learning curve, and lots of people criticize their software quality/stability, though I honestly feel the same applies for Sophos, pfSense, and a lot of the other home-grade solutions.</li> <li data-xf-list-type="ol">Sophos XG: If you can stand the UI and you don't have much QoS needs, it's acceptable, but personally I find the UI to be a total mess in terms of usability, geared towards looking pretty.</li> <li data-xf-list-type="ol">Cisco Meraki MX: If you can afford it, this is one of the most elegant all-in-one boxes money can buy. It's got a dead simple web UI and has a good selection of AV, IPS, and filtering features. Cisco's quality really reflects, I've almost never had a false positive or had it break any websites/apps, which is a common nuisance with most other vendors' UTM features. Main downsides are the licensing costs for Advanced Security, as well as the limited throughput capabilities (strictly 450mbps or slower even for NAT)</li> <li data-xf-list-type="ol">pfSense: I ranked this lower mainly because it's not technically a UTM, but you can get close. Paying for ET or Snort VRT rules gets you a pretty solid IPS and pfBlocker is like a piHole on steroids, both DNS and IP based blocking. In practice it comes pretty close to the protection level of a commercial UTM solution and has a lot more tweakability since it's just a FreeBSD machine.</li> </ol><p></p><p>Overall I would say, if you don't want to pay for anything, choose between Sophos XG or pfSense, and be really honest about how much you want commercial free UTM abilities. Honestly I regret the one deployment of Sophos XG I did.</p><p></p><p>If you are willing to pay ongoing fees, I would recommend Fortinet or Meraki. They both have different strengths so it's hard for me to rank them.</p></blockquote><p></p>
[QUOTE="MacDefender, post: 916862, member: 83059"] I've dabbled in this field a lot. They're hard to rank but this is roughly my ranking: [LIST=1] [*]Sophos UTM 9: By far my favorite in terms of functionality and UI for a home UTM. I don't recommend using it anymore since the maintenance has gone pretty stale on it. [*]Fortinet "F" series (40F, 60F, 80F). Unless you have symmetric gigabit, the 40F or 60F should suffice. It has a ton of functionality and ridiculous throughput even with all features turned on. Downsides are: It has a pretty steep learning curve, and lots of people criticize their software quality/stability, though I honestly feel the same applies for Sophos, pfSense, and a lot of the other home-grade solutions. [*]Sophos XG: If you can stand the UI and you don't have much QoS needs, it's acceptable, but personally I find the UI to be a total mess in terms of usability, geared towards looking pretty. [*]Cisco Meraki MX: If you can afford it, this is one of the most elegant all-in-one boxes money can buy. It's got a dead simple web UI and has a good selection of AV, IPS, and filtering features. Cisco's quality really reflects, I've almost never had a false positive or had it break any websites/apps, which is a common nuisance with most other vendors' UTM features. Main downsides are the licensing costs for Advanced Security, as well as the limited throughput capabilities (strictly 450mbps or slower even for NAT) [*]pfSense: I ranked this lower mainly because it's not technically a UTM, but you can get close. Paying for ET or Snort VRT rules gets you a pretty solid IPS and pfBlocker is like a piHole on steroids, both DNS and IP based blocking. In practice it comes pretty close to the protection level of a commercial UTM solution and has a lot more tweakability since it's just a FreeBSD machine. [/LIST] Overall I would say, if you don't want to pay for anything, choose between Sophos XG or pfSense, and be really honest about how much you want commercial free UTM abilities. Honestly I regret the one deployment of Sophos XG I did. If you are willing to pay ongoing fees, I would recommend Fortinet or Meraki. They both have different strengths so it's hard for me to rank them. [/QUOTE]
Insert quotes…
Verification
Post reply
Top