Hi,
We are looking to replace an aging firewalling setup.
A little bit of background:
We are coming from a Cisco background, and have been impressed by Juniper in the routing field. So we are not uncommon with Juniper.
As for firewalls, we have still mainly been Cisco PIX and later ASA oriented. We looked at Firepower but were not impressed and put of by the horror stories, gave ASA with firepower a try, ran away.
Deployed pfSense, but are seeing weird problems from time to time, lost confidence. Gave Opnsense a try, but figured Opnsense and pfSense are beter for smaller or SOHO deployments.
The firewalls will be deployed in a datacenter, in front of servers. Obviously need HA support and we want IDS/IPS features. Traffic should be between a couple 100mbps to a max of 1gbps. There are multiple networks behind the devices, so we can split the networks over multiple firewalls and thus lower the amount of traffic per device. Some scenario's demand a dedicated anyway firewall, so we'll probably be managing multiple units anyhow in the end.
I see a lot of recommendations for Fortinet and Palo Alto.
But we've seen Fortinet at a client site, and were not impressed, we are fairly certain we don't want to deploy it in our datacenter.
As for PAN, there is not to much confidence, we don't know the systems and are hesitant to introduce a new, unknown system. Plus, some people are worried we might just be picking them because they are the lesser of 2 evils.
Intro Juniper SRX, a known platform (Junos), positive experience with them in the routing field, a nice range from small to big models for diverse deployments.
It's just that I can't find anything about any experiences with these devices.
Is everybody so happy about them that there is nobody actually talking about them?
Or did everyone ran away from Juniper firewalling after ScreenOS and is actually nobody using them?
We are currently looking at the SRX 340/345/380 devices.
Any experiences with these SRX devices?
No comments:
Post a Comment