Re: NGFW Usage Information

["Barton, Robert W." <bartonrt () LEWISU EDU>]

I've been a check point fan for a long time.  They have always seemed to be the Tesla to everybody's Toyota.  You pay 
for it, but that management server was rock solid, the SPLAT distro was simple (if going with server/software based 
firewall), and the logging was great.

I ran Juniper SRX firewalls as well, but the management server was not up to snuff (odd menu trees, logging was 
lagging).  We also ran into an "undocumented bug" that occurred in HA, specific model, specific OS, and under high 
load.  That wasn't fun.  I loved the Netscreen-OS devices we ran for environment segmentation (no HA, or high volume 
needed).  The web interface just worked...like a Volkswagen.

Robert W. Barton
Director of Information Security
Lewis University
One University Parkway
Romeoville, IL  60446-2200
815-836-5663

From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of 
Lovaas,Steven
Sent: Wednesday, April 19, 2017 4:57 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] NGFW Usage Information


We're using Juniper, though our housing side uses Palo Alto (cue the war drums in the distance...)


===================
Steven Lovaas
Information Security Officer
Colorado State University
steven.lovaas () colostate edu<mailto:steven.lovaas () colostate edu>
970-297-3707
===================
________________________________
From: The EDUCAUSE Security Constituent Group Listserv <SECURITY () LISTSERV EDUCAUSE EDU<mailto:SECURITY () LISTSERV 
EDUCAUSE EDU>> on behalf of Miller, Richard H <rick () BCM EDU<mailto:rick () BCM EDU>>
Sent: Wednesday, April 19, 2017 3:04:10 PM
To: SECURITY () LISTSERV EDUCAUSE EDU<mailto:SECURITY () LISTSERV EDUCAUSE EDU>
Subject: Re: [SECURITY] NGFW Usage Information

You also may wish to consider Juniper SRX firewalls.



Richard H. Miller, CISSP, IEEE(SM)
Network Security Architect
IT-Network Engineering & Security
IT Helpdesk 713-798-8737



From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of 
Pardonek, Jim
Sent: Wednesday, April 19, 2017 8:46 AM
To: SECURITY () LISTSERV EDUCAUSE EDU<mailto:SECURITY () LISTSERV EDUCAUSE EDU>
Subject: [SECURITY] NGFW Usage Information

***CAUTION:*** This email is not from a BCM Source. Only click links or open attachments you know are safe.
________________________________
I've finally been able to convince our leadership to pursue swapping out our IPS and ASA's for a set of next gen 
firewalls.  We are still in the evaluation phase and as a part of our evaluations we are asked by senior leadership to 
quert other universities to get a barometer of what is being used.  If you would (and you can PM me) let me know if you 
have a NGFW and what it is (not needing specifics)  It will help us with our decision.  The 3 we looked at were Palo 
Alto, Check Point, and Cisco Firepower.

Appreciate any responses in advance!

Best,

Jim

James Pardonek, MS, CISSP, CEH
Information Security Officer
Loyola University Chicago
1032 W. Sheridan Road | Chicago, IL  60660

*: (773) 508-6086
[standard_isc2_cissp]


This message (including any attachments) is intended only for
the use of the individual or entity to which it is addressed and
may contain information that is non-public, proprietary,
privileged, confidential, and exempt from disclosure under
applicable law or may constitute as attorney work product.
If you are not the intended recipient, you are hereby notified
that any use, dissemination, distribution, or copying of this
communication is strictly prohibited. If you have received this
communication in error, notify us immediately by telephone at (815)-836-5950 and
(i) destroy this message if a facsimile or (ii) delete this message
immediately if this is an electronic communication.

Thank you.