Spec me a UTM

tribz

tribz

tribz

Soldato
Joined
4 Mar 2008
Posts
2,646
Hi, might be be suitable for networking but thought I'd try servers first.

I'm looking for a UTM firewall for work. Has to be able to do web protection and smtp scanning. Looking for something that can block out flash, java exploits for when the client machines are out of date but not actually block flash, java etc. Would like it to block things like the crypto virus at the perimeter also.

Budget about a grand, much less ideally and be able to cope with 50 users through a 80Mb fibre connection.
 
I would recommend Untangle version 10 might suit your needs.

http://www.untangle.com/untangle-ng-firewall

Untangle Lite is free, but you would probably want yearly sub of Web Filter and a few other packages. These are 30 day trail and just purchase from within the untangle package.

Hardware for anything from atom upwards suitable.

I have mine in Esxi with Pfsense in front Untangle in bridge mode, but hardware wise you might want to look at building a system using this board which will suffice for the amount of users you suggest.

http://forums.untangle.com/hardware/33827-good-news-intel-j1900.html

I mention this board because of power usage anything will do really I use a Intel DQ77MK board with a I5 3470T with an added dual Intel nic, but i have other VM's in use.

Alternatively you could use a HP Microserver for this task as it will serve the user numbers you suggest even in a viitual box environment under Windows 2008. With the added benefit of storage or NAS duties. I would go bare metal though if solely business for security issues.
 
Last edited:
Thanks, how effective have you found it against virus's and exploits. Have you seen it actively protect against these?
 
If you have specific needs then you need to demo the unit. It sounds like you want something with robust application profiling, I'd recommend the Palo Alto for that but it's way out of your budget.

Fortinet, I've found to be slightly hit-and-miss, and the support is sometimes unhelpful but overall pretty good.

With the Sophos UTM's the 100 and 110s have limited upstream throughput (2mbit and 4mbit respectively). The 120 and upwards are unlimited upstream. Their support is slow to respond but will fix things quickly (often before support gets back to you).
 
I remember reading about big performance drop offs on Palo Alto kit when enabling all of the IPS type stuff, but at these throughputs unlikely it'd be an issue, and with this budget unlikely to be a choice ;)

Haven't dealt with this end of the market before, I know that many years ago some chaps who used to resell stuff used to do Fortinet and Cyberoam devices.
 
Thanks for all the feedback. I think one thing that is concerning me is that throughput tanks when everything is switched on on these devices. I'm considering getting an entry level HP Xeon rack server and running untangle or Sophos or a n other.

I'm trialling Untangle now in a VM and it seems pretty comprehensive.
 
If you only have a grand then Untangle will perform to the level of the hardware you run it on. To get those sorts of figures in a traditional box will cost you a lot more.
 
tribz said:
Thanks for all the feedback. I think one thing that is concerning me is that throughput tanks when everything is switched on on these devices.
Click to expand...

Sadly at the lower end of budgets, or with devices that are not purely say an IPS, this will happen. One of the trade offs for sticking 'everything' in one box.
 
If you aren't allergic to Sonicwall's then you could probably fit one of the NSA range with the appropriate service licenses into your budget to suit your requirements.
 
We're mid way through a phased rollout of the sophos. It's basically an Astaro appliance which I believe sophos have taken over .

I'm actually pleasantly surprised at how well specd it is. User forums are raving about the new software release currently in beta. The wireless module is real handy if you're looking to replace your existing APs.

Support is very good too (we got premium level thrown in). Cost can be varied depending on what modules you want.
 
You must log in or register to reply here.
Back
Top Bottom