[vpn] Review of 13 VPN products
Joel M Snyder
Joel.Snyder at Opus1.COM
Wed Oct 3 18:41:32 EDT 2001
>I agree with Dana!! Also why didn't they pick the
>Cisco Dedicated VPN products to test? Pix is a fine
>VPN box, but cisco has a whole separate line of
>dedicated VPN only products (3xxx and 5xxx series).
>They really should be comparing apples to apples.
Each vendor offered their choice of products. You would have
to ask Cisco why they felt that IOS and PIX were the best choice.
>From my experience, both the Compatible and Altiga boxes are
largely aimed at remote access, and do site-to-site as a secondary
feature. Certainly there is no concept of a global VPN management
tool for a network of hundreds of 3000/5000 boxes.
>Both IOS devices and the dedicated products support
>multiple IKE policies.
You know, it's awfully easy to say that, but if you could prove it,
that would be much more useful.
Joel M Snyder, 1404 East Lind Road, Tucson, AZ, 85719
Phone: +1 520 324 0494 x101 (v) +1 520 324 0495 (FAX)
jms at Opus1.COM http://www.opus1.com/jms Opus One
>> -----Original Message-----
>> From: Dana J. Dawson [mailto:djdawso at qwest.com]
>> Sent: Wednesday, October 03, 2001 2:04 PM
>> To: Joel Snyder
>> Cc: vpn at securityfocus.com
>> Subject: Re: [vpn] Review of 13 VPN products
>> Joel Snyder wrote:
>> > Folks:
>> > In case you hadn't seen it, Network World just published a
>> review I did
>> > of 13 different VPN products, focusing on site-to-site and
>> enterprise applications:
>> > http://www.nwfusion.com/reviews/2001/1001rev.html
>> > --
>> > Joel M Snyder, 1404 East Lind Road, Tucson, AZ, 85719
>> > +1 520 324 0494 x101 (voice) +1 520 324 0495 (FAX)
>> > jms at Opus1.COM http://www.opus1.com/jms Opus One
>> > Electronic mail is always the best way to contact me.
>> > VPN is sponsored by SecurityFocus.com
>> I disagree with the assertion in the article that the Cisco
>> products only allow
>> a single IKE policy to be configured. Both IOS and the PIX
>> allow multiple
>> isakmp policy clauses, and it's not very hard to figure that
>> out. If the people
>> doing the testing missed something this obvious when
>> configuring the Cisco gear,
>> it makes me wonder how much else they might have missed.
>> Because of this, I
>> have serious doubts about the credibility of the testers and
>> their results.
>> Dana J. Dawson djdawso at qwest.com
>> Senior Staff Engineer CCIE #1937
>> Qwest Global Services (612) 664-3364
>> Qwest Communications (612) 664-4779 (FAX)
>> 600 Stinson Blvd., Suite 1S
>> Minneapolis MN 55413-2620
>> "Hard is where the money is."
>> VPN is sponsored by SecurityFocus.com
VPN is sponsored by SecurityFocus.com
More information about the VPN