Anyone using the Ndurant 40 or 50 model?

[Pathnetworks]

My company is looking at moving away from our existing firewall platform to a newer platform.

Currently I've been looking into the top three of the industry; Checkpoint, Juniper and Cisco.

While hardware platforms on the competition are easy to determine, I notice that the Checkpoint environment are one software provider but many hardware providers. Does anyone have opinions on Resilience and how they perform on the mid range models?

I'm looking at a fairly complex environment with multiple DMZ vlans as well as a more sophisticated internal LAN structure. How does Checkpoint/Resilience handle more complex routing topologies? Is there any BGP support beyond the fairly industry standard of OSPF for those that are developing redundant/load balanced ISP links for both inbound/outbound services?

Thanks in advance!

[linuxsrc]

For the selecetion of the hardware, it depends on your performance and ports requirements, of course, you can select ND 40/50, they are modular appliances, support copper and optical ports, with 10/100/1000M speed;

To VLAN, it support all VLAN features on there all products;

To say the routing protocal supporting, it's ported from Secure Platform, you can run BGP/OSPF, to other vendors running Check Point software, such as Crossbeam, it must install "routing software"(such as zebra) to support these features;

To Load Balance or Load Sharing, Check Point software support this feature, it depends on the internal DNS services of CP gateway, it works well.

Resilience hardware platform, easy to deploy and maintain, with high availability, if you can afford no more than 30 seconds interrupt, you can only buy SINGLE Check Point gateway license to construct the HA environment with high availiability.

Welcome!

Regards,
linuxsrc

[Pathnetworks]

We actually found that the Ndurant Express 30's more than met our needs. Great product to date!