Geekzone: technology news, blogs, forums
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.

2085 posts

Uber Geek
+1 received by user: 623


Topic # 180827 23-Sep-2015 09:24
Send private message

Does anyone have a checkpoint firewall? What are your thoughts on it?

A bit of reading on the net seems to point out they are not very fun when it comes to licencing. Other than that some seem to like them, some not so much.

Also if anyone is running a Palo Alto I'd be interested to hear your experience Are they common in NZ? The Wildfire component looks very cool, but other than that I know very little about them.

Currently running an ASA5520 / Webmarshal to give you an idea of what we are after replacing/complement. 

Please no sales PMs :)


Create new topic
2090 posts

Uber Geek
+1 received by user: 848

  Reply # 1392492 23-Sep-2015 09:34
Send private message

We run them across all our main sites

As you said they can be very expensive licensing wise, but they can do a lot and you can just license what you want.

Make sure you buy an appropriately sized one - we are struggling in one site with undersized checkpoints.

also - sales/pre sales could actually probably help you, I wouldn't write them off.

2085 posts

Uber Geek
+1 received by user: 623


  Reply # 1392501 23-Sep-2015 09:44
Send private message

Agree, we will talk to a rep/ pre sales when the time is right, just at the R&D stage for now. Thanks for the advice!


208 posts

Master Geek
+1 received by user: 35

  Reply # 1392542 23-Sep-2015 10:11
Send private message

Working with CP's currently and having recently attended their roadshow they definitely come across as quite complete in their vision and approach (check out Gartner magic quadrant stuff for firewalls). Yes licencing is a pain, but they know this, and are addressing it in R80.

I haven't worked on Palo Alto but currently work in a place that is selling them. They seem to be the "hot thing" at the moment, trouble is seperating sales spin from reality. Check out NSS labs tests for Firewall testing and results, can make for interesting reading.

208 posts

Master Geek
+1 received by user: 35

  Reply # 1392552 23-Sep-2015 10:13
Send private message

btw you can download CP software and trial it for 15(?) days before you need a licence.
Can be run as VM's and I have done this before using Virtualbox.

Create new topic

Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:

Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:

Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:

News »

New Zealand hits peak broadband data
Posted 18-Jan-2018 12:21

Amazon Echo devices coming to New Zealand early February 2018
Posted 18-Jan-2018 10:53

$3.74 million for new electric vehicles in New Zealand
Posted 17-Jan-2018 11:27

Nova 2i: Value, not excitement from Huawei
Posted 17-Jan-2018 09:02

Less news in Facebook News Feed revamp
Posted 15-Jan-2018 13:15

Australian Government contract awarded to Datacom Connect
Posted 11-Jan-2018 08:37

Why New Zealand needs a chief technology officer
Posted 6-Jan-2018 13:59

Amazon release Silk Browser and Firefox for Fire TV
Posted 21-Dec-2017 13:42

New Chief Technology Officer role created
Posted 19-Dec-2017 22:18

All I want for Christmas is a new EV
Posted 19-Dec-2017 19:54

How clever is this: AI will create 2.3 million jobs by 2020
Posted 19-Dec-2017 19:52

NOW to deploy SD-WAN to regional councils
Posted 19-Dec-2017 19:46

Mobile market competition issues ComCom should watch
Posted 18-Dec-2017 10:52

New Zealand government to create digital advisory group
Posted 16-Dec-2017 08:47

Australia datum changes means whole country moving 1.8 metres north-east
Posted 16-Dec-2017 08:39

Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.