I have a few aging ASA5520's that go end of support next year that I am looking at replacing. The 5520 is acting as stateful firewall and is also terminating client vpn connections. We are looking at options for replacement and adding some IDS capabilities as well. We are pretty much a Cisco shop. Would love some community recommendations on what you like to work with, IE PAN Vs Firepower Vs ASA with firepower bolt ons Vs whatever else.
I hear great stuff on Palo Alto's but have never used them. How is their support compared to Cisco TAC. I am just trying to decide a direction to start attacking this and would value people's real work production experiences. Thanks in advance.
No comments:
Post a Comment