How to buy a hardware firewall

Last year, I needed a hardware firewall. I tested three hardware firewalls with routing functions, there is Sangfor, hillstone, And a brand that won't be mentioned because of problems. Every firewall has been tested for one month. I have found some problems. Fortunately, I have passed the test. Otherwise, the consequences will be unimaginable.

The first test of the hardware firewall is a well-known domestic brand, this series of firewalls in terms of reputation and sales are very good, however, during the test, it was found that the computer accessing the Internet through the hardware firewall often experienced a problem where the webpage could not be opened, but refresh the page. After statistics, one or two pages cannot be opened each time 50 pages are opened. At first, I thought it was a specific situation. Later, many people responded to this situation to me. At first, I thought it was a configuration problem, let the manufacturer perform remote debugging. This is still the case, because the service or firewall needs to be restarted during each test, and the network may be interrupted, which may cause some adverse effects, I decided to terminate the test of this firewall, but the manufacturers attached great importance to this matter. After communication, I was also impressed by their sincerity and decided to use the weekend and evening work time to test again, the manufacturer also sent technical engineers to conduct on-site debugging, bringing about a new hardware firewall and some modifications to the underlying code, but it still cannot, after so many years, the manufacturer has never encountered such a fault. The final conclusion is that the firewall may not be compatible with the upper-layer optical fiber transceiver or the upper-layer network equipment. Next I went to Sangfor and hillstone for a one-month test. The test results were good, stable, fast, powerful, and the web management platform was easy to learn. After three months of hard work, I have also accumulated experience in purchasing a hardware firewall. Here I will share with you:

1. You must be clear about the functions required by the hardware firewall. For example, I am very concerned about the function of binding IP addresses to computer mac addresses, because we often modify IP addresses in our network, resulting in IP address conflicts. This function can solve this problem and arp spoofing.

2. Do not listen to the dealers' opinions about how good their products are. You must test them to see if they are suitable for your network environment. Dealers have products in their hands. You can discuss with them to test the product. It is best to take a long time.

This article from the "Network Management Mr. Wang" blog, please be sure to keep this source http://xiaowang.blog.51cto.com/1083/434995