|
Not used any Juniper kit, but I swear by Fortinet's FortiGates. Hardware accelerated with AntiVirus and IPS/IDS. You can pick up a FortiGate 400A for about £4500 which will do 450Mbps across a pair of gigabit and four 10/100 ports if memory serves me correctly. Awesome performance and no bloody host count licensing (I'm looking at you Check Point). They do OSPF and BGP as well.
I think Check Point still wins out with management and logging tools though, they just have a much more mature tool set.
Not had the joy of playing with Crossbeams or anything like that, but I've worked with a lot of Nokias running everything from 4.1 to NG R55 and they are all right, not fantastic, but all right. They don't seem to work well with more than 50-60 VLANs and getting them to crash and reboot isn't too hard if you know what you are doing but if you just leave them alone then they are fine. Have worked with some in a data centre environment that have been up for years, running hundreds of VPNs and the only problems are when the hardware eventually dies.
Nokias do OSPF and BGP, as do other Check Point appliances like the Corssbeams but with Check Point it is up to the appliance/OS to provide routing protocol support, something that dedicated, integrated systems don't suffer from.
__________________
Web Host - Certified Member
Last edited by freethought : 22nd January 2008 at 01:39 AM.
|