Astaro's Linux-based firewall appliance stands out with a laundry list of capabilities, but runs several steps behind top competitors
Astaro's ASG425 offers a massive collection of services for the price -- much more than what you could get on a roll-your-own box. However, performance is disappointing. You have to want its copious feature set to consider it over more affordable competitors.
How important are flexibility and a rich feature set to you? If these elements are your top considerations, then the Astaro Security Gateway should be high on your short list. With roots in the Linux world, the Astaro is a serious firewall with serious capabilities for a distributed enterprise UTM box.
Although not a top performer by any stretch, the system truly stood out because of its kitchen-sink take on features, including proxies, cache, server load balancing, destination NAT, routing, bridging, packet filters, IDS/IPS functions, anti-virus, anti-spam, and so on. Along with a Web GUI not tied to any particular browser, this system has a bit of extra security with user and admin log-ins on different TCP ports.
[ Read the overall results of the InfoWorld Test Center's great UTM challenge. Read the other reviews: SonicWall NSA E7500 | WatchGuard Firebox Peak X5500e | ZyXel ZyWall USG1000 | Compare the UTMs feature by feature. ]
Most products in the UTM category reward careful study before the management interface is touched. WatchGuard, in particular, requires a fair amount of planning before deployment because of its whitelist approach to traffic flow (you start by allowing all outbound traffic). For the Astaro, though, our suggestion is to try clicking on stuff; there are lots of buttons and widgets that give you access to features.
An upside, this method of learning is likely to expand your concept of what the system can do for you. The downside is that it tends to expose drawbacks in the user interface. One that threw us for a bit was the side-by-side red/green button that served to turn interfaces on/off. We were expecting it to be merely an indicator and not a button. If you're one of the many men who are somewhat color-blind, you'll want to pay very close attention to starting states and make sure you keep track of what you've done, since the green and red buttons won't really help you.
|Test Center Scorecard|
|Astaro Security Gateway ASG425||5||8||8||8||8||7||7|
Android 5.1 fixes a lot of what's wrong in 5.0.
Macworld goes hands-on with Apple's thinnest, just-announced laptop. It's so thin, it can only fit a...
With only the third CEO in the company's history, Microsoft did not want to remain complacent and on...
Sponsored by Nuage Networks
Sponsored by Fibre Channel Industry Association
Will Google deliver a solid, modern approach to telephony for a mobile, multipoint, commingled world?
The dreaded mega merger is kaput, but the central problem remains: We need more ISP competition
Your computer's next point of failure might be further up the stack than you think
Enterprises continue to fumble open source, largely because they misunderstand its value