I wouldn't be surprised to know that most of the telcos in Malaysia are running Checkpoint firewall in their data centres or even the UMTS network.
It's either the excellent marketing strategy made by the local partner/supplier/distributor or the proven capability of the firewall itself.
Firewalls are divided into 2 types, which is the software based and the 2nd would be the appliance.
In the early 90s, companies uses appliance firewall due to its effectiveness and faster thruput. Back then the firewall is just up to layer 3 filtering.
In todays environment, firewalls are evaluated based on their performance up to layer 7. That is how Checkpoint firewall differ with the rest of the firewalls in the market. Eventually most of the firewalls in the market today, claims that theirs are capable to run layer 7 fire walling.
Some of the points and advantages why I feel Checkpoint leading the market is;
1. ease of configuration via the smartdashboard
2. able to alert if there's duplication of rules or objects
3. ease of performing packet tracking based on current or past traffic.
4. sniffing made easier with fwmon
5. SPLAT(secure platform) friendly features
6. UMTS functionality for pdp context filtering
I've listed some that come across my mind and with the checkpoint community froup cpug in the net, the solution to most of the problems are easily made available.
The points above are based on my personal experience handling Cisco and Netscreen.
cheers..
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment