[vpn] best SOHO devices

Duross, Bill Bill.Duross at stratus.com
Thu Apr 11 14:41:24 EDT 2002 

I too am an avid Nokia Crypto fan although it would have been nice if they
had incorporated a stateful firewall (they actually had in the CC100 which
was never released!).  I've been looking at replacements over the last few
months.  If cost is an important factor, take a look at the Netscreen 5xp.
It meets all of your requirements although I'm not quite clear on your NAT
scenario.  If $ isn't as much of an issue I'd take a close look at the
Nortel Contivity line.  I haven't lab tested it yet, but it looks good on
paper and in their lab.

Hope that helps,

Bill


-----Original Message-----
From: Travis Watson [mailto:rtwatson at qwest.net]
Sent: Sunday, April 07, 2002 10:39 AM
To: Vpn at Securityfocus. Com
Subject: [vpn] best SOHO devices


Hi,

I'm looking for feedback on the best SOHO device in your opinions.

So, if it were you and/or your company, what device would you recommend as
the best SOHO VPN device around the $500US range?

Please keep in mind that I would like it to:

1) Be able to do IPSec b2b's with T-DES/SHA-1 and IKE group2 (1024-bit)
primes.
2) Be able to play nice with others
3) Be able to NAT internally (i.e. have the distant end provide it with IPs
and be able to NAT to those IPs without disturbing the networking schema of
the internal net. Commonly, we find business partners that have non-routable
space assigned to their workstations.  If we provide them with IPs, we don't
want to have to mandate that they re-IP their network).
4) Be able to support 5 to 25 users (understanding that the licensing cost
may well increase for users beyond 5 or 10).
5) Have 24x7 support available.
6) Can be managed remotely in a secure manner (centrally would be even more
preferable).
7) Have client software available (not critical and, again, understanding
that client software may involve further costs).
We have been recommending Nokia cc500s for branch offices up to now,
but--though we like them--they are well above the $1000 range for hardware
and support. Additionally, they are not really the best SOHO solution in
that it's a bit of overkill for three sales guys stuck in a remote office
somewhere that just want to read their email and obtain files off of shares.
Plus, of course, they will be EOL this year.

So, I suppose I'm looking for something that will have close to the
functionality of a cc500 but is less powerful and more affordable.

Any and all feedback is much appreciated.

Regards,

Travis
rtwatson at qwest.net


VPN is sponsored by SecurityFocus.com

VPN is sponsored by SecurityFocus.com

More information about the VPN mailing list