Re: small schools - nextgen firewalls

["Barros, Jacob" <jkbarros () GRACE EDU>]

We have a 300Mb connection.  I have a PaloAlto 2050 at the main campus
and manage a number of Sonicwall devices at perimeter houses and a
remote site on Comcast connections.

I am generally happy with both products.  However after years of
working with both and Cisco ASA, the PaloAlto interface and approach
is by far my favorite.

The 2000 series gui has has some issues, but it has not to my
knowledge affected our throughput.


Jake Barros  |  Network Administrator  |  Office of Information Technology
Grace College and Seminary  |  Winona Lake, IN  |  574.372.5100 x6178


On Tue, Jan 13, 2015 at 1:47 PM, Bob Williamson <bob_williamson () aw org> wrote:
> We are a K-12 school of 500 students (100 are dorm students), 600+ users and
> have been using a PA-500 for 3+ years.  Was able to get rid of our Cymphonix
> and Watchguard.  We routinely hit 100Mbps without interruption.  Our users
> have all kinds of devices, multiple Vlans, etc.  We have a case on the Palo
> alto networks website under education that you might find helpful, just
> search Annie Wright and Palo Alto.
>
>
>
> Feel free to contact me directly if you want to discuss further.
>
>
>
> Note:  I have only heard bad things about the 2000 series Palo Altos.
> Something to do with the specific hardware with that model.
>
>
>
> Hope that helps,
>
> Bob Williamson
> Network Administrator
> Annie Wright Schools | 827 N Tacoma Ave, Tacoma, WA 98403 | www.aw.org
> D: 253.272.2216 | F: 253.572.3616 | Bob_Williamson () aw org
>
>
>
> From: The EDUCAUSE Security Constituent Group Listserv
> [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Julie Newton
> Sent: Tuesday, January 13, 2015 10:30 AM
> To: SECURITY () LISTSERV EDUCAUSE EDU
> Subject: [SECURITY] small schools - nextgen firewalls
>
>
>
> Are there any small schools using SonicWall (NSA 220, NSA250 or NSA 2600
> models) or PaloAlto (PA-200, PA-500, PA-2020 or PA-2050) ?
>
>
>
> We currently have 20 MB pipe (we *are* small) but expect 1 GB within <2
> years as Google Fiber is installed across Austin.  We have 2 discrete
> networks and want an appliance that works across both with unique filter
> sets.  I am most concerned with malware filtering ability, throughput and a
> good admin interface.
>
>
>
> Currently on older Cymphonix (pre-Untangle), which required an appliance for
> each network and had a clunky UI and filtering did not catch ransomware.
>
>
>
> Any suggestions or opinions?
>
>
>
> Thanks in advance for your help!
>
>
>
> -Julie Newton
> Director of Information Technology
> ----------------------------------------------------------------------------
> AUSTIN PRESBYTERIAN THEOLOGICAL SEMINARY
> 100 E. 27th Street, Austin, Texas 78705
>
> austinseminary.edu