Firewall Information

[XxPrOdiGyxX]

I'm about to purchase a simple firewall. The specifications state that the maximum nodes it can handle are 10. When we told Dell that our network had 15 workstations he said we would have to get a firewall that can handle 25 nodes. However, this doesn't make sense to me. The workstations go through the server. The server acting as the gateway/proxy. How or why would the firewall even know anything about the number of workstations connected behind the server? Can someone let me know? Because I think they are completely wrong.

 

[drebo]

What kind of firewall are you purchasing?

 

[XxPrOdiGyxX]

SonicWall TZ150

 

[JackMDS]

This is the way they license the devices there is nothing you can do about it.

 

[jlazzaro]

how do the sonicwall's determine the number of hosts? i know the pix uses the total number of concurrent source IP addresses from the internal network...

if this holds true, NATing before the firewall on your server should get around the license.

 

[Genx87]

Even when you nat doesnt the header info tell which host sent the packet so when it returns the router can route to the right host?

 

[jlazzaro]

the NAT device tracks the translations via randomized source ports in the PAT table.

 

[Epsil0n00]

Originally posted by: XxPrOdiGyxX
SonicWall TZ150

The TZ150 product line maxes out at 10-node models. To get above 10 nodes you would need to get a TZ180/25 node. The good thing is that there's a current promo on the TZ180/25. When you purchase a TZ180/25 between now and the end of 2008 you get a free upgrade to the SonicOS Enhanced operating system and a free upgrade to unlimited nodes. Note: this is only with the TotalSecure models (TotalSecure means it comes with 1 year of support and 1 year of security services).

Epsil0n

 

[drebo]

Why buy a Sonicwall anyway? They're terrible.

Edit: wow, this is a really old post.