Badges

90 Points
7 Years
Top 20
Popular

User Activity

Over 1 year ago
I prefer my host based Anti-Malware solution with no firewall. Most of the problems I have seen from other AV and similar products have involved the firewall. Different focus and expertise. I do agree with the need for additional reporting, though.
Over 1 year ago
You make some good points, and I hope that we'll see Blackberry add to this area moving forward. That said, there's quite a bit of info via CylanceOptics, and overall the system utilization is very low.
Over 1 year ago
My experience was similar to yours. Saw them in a bake off, and it was no question that traditional AV was dead.
Over 1 year ago
I used them for wireless for a while, but there were some initial hardware bumps at that time, and I eventually moved in a different direction.
Over 1 year ago
The big thing with using MikroTik is that their paradigm is very different from other solutions, so you really have to know what you want to do. Very flexible, but you have to look at things a bit differently.
Over 1 year ago
That's a very good assessment. I felt the same about their products, if which I have deployed a few. Good price point, and good for niche situations...
Almost 3 years ago
Hi Orlon, I have never seen a drop from 1Gb/s to 100Mb/s for any collection of security features. I've seen 35-40% performance loss, but not 90%
About 3 years ago
Hi Gary, No, I hadn't seen that security product as yet. Interesting model they are trying to get on board with --- everyone wants to sell you a perpetual subscription...
Over 3 years ago
And this is why Cisco ultimately bought SourceFire. Probably far less expensive to get into the UTM / Next Gen Firewall space that way.
Over 3 years ago
Hi Jason, Upon further review, the tools recommended in that article are more along the lines of vulnerability management, rather than User Behavior Analytics, unfortunately.
Over 3 years ago
Thanks, Jason
Over 3 years ago
Thanks, Tommy. I will take a look at Gurucul, Dynatrace and Nexthink, as I have no experience with them. I do have a fair amount of experience with Splunk, and not only is their solution a bit overkill for my targets, but the costs are worse than Rapid7. :)
Over 3 years ago
LogRythm is a very good tool, but it comes with a pretty hefty price tag (especially for smaller orgs than yours). While it does not have (as yet) the name of an ArcSight -- especially with larger orgs -- it is definitely making a strong name for itself in the mid-market…
Over 3 years ago
Mikrotik devices are very capable, but the UI could be a bit better (it is a bit confusing, especially compared to competing devices). They generally do very well on pricing, too.
Over 3 years ago
Answered a question: Fortigate vs Barracuda
I've deployed Fortigate devices in a number of different networks, including some with the following characteristics: A - 100 users, 1 office, dual 1gbit links B - 300 users, 6 offices, main office with dual 150Mbit links, other offices with one or two 50-100Mbit links…
Over 3 years ago
I have only done a peripheral review of CASB vendors in the past few months, but I do agree that the top ones to consider right now are Skyhigh Networks and Netskope. When looking at a CASB, be sure not only to consider if they offer all the right checkboxes, but take a…
Over 3 years ago
Both Sophos and Fortigate offer end-point software. Depending on your needs, both have advantages over the other solution, but most people would conclude that the Sophos end-point solution is more feature rich. That said, when it comes to security, while there is some…
Over 3 years ago
Answered a question: Fortigate vs Barracuda
The new generation 3 ASICs provide minimal performance even with all features turned on. This can be found in the E models. I've found the Fortigate product matrix to be very accurate in terms of the performance levels, so you have to review that to see what the impact…
Over 3 years ago
Answered a question: Splunk vs. Elastic Stack
I have started to recently evaluate the same approach for myself and a few clients. The short answer is that it is definitely possible to replace Splunk with the ELK stack for very many use cases. Splunk is a robust, well-integrated platform that has a vibrant ecosystem…
Over 3 years ago
Every vendor has their own perspective or approach or paradigm to security, and when you get that, things get easier from a deployment perspective. That said, my personal feel is that it is easier to learn and master Fortinet firewalls than Cisco firewalls (and I have…
Over 3 years ago
Understood. I didn't want to imply that other perspectives were invalid, so much as to clarify what I was intending to address in my question. I also appreciate your clarification.
Over 3 years ago
I support smaller organizations (SMB) and Hyper-V has a compelling business case there. Not just in cost, which is obvious, but in complexity. Hyper-V, especially in 2012R2 and 2016 editions, has all the core features that most small and medium businesses will need…
Over 3 years ago
Answered a question: Cisco Firepower vs. FortiGate
I see a lot of these "vendor vs vendor" questions, when it really should be a question of "solution for this size network from vendor A vs vendor B".
Over 3 years ago
Answered a question: Fortigate vs Barracuda
What size networks are you trying to protect? Fortinet has a range of solutions (as does Barracuda), and to broadly compare one family vs another is generally not that productive. The Fortigate family shares the same interface and overall features across the entire…
Over 3 years ago
My suggested question is independent of the support packages. If you're paying for 24x7 support, you expect 24x7 support. But that doesn't address the following scenarios: -- After a vulnerability is disclosed in the industry, how long does the vendor take to get it…
Over 3 years ago
Another question: -- How quickly does the vendor provide support and fixes?
Over 3 years ago
Both solutions have a firewall and end-point security. I like the performance and flexibility of the Fortigate solution more than the Sophos. Ransomware is prevented in the same way as other host-based malware. If it can run, you are doomed, so it has to be…
Almost 4 years ago
The v5.6 GUI is much improved, IMO. Very happy to see the changes there. Some things are still a little hard to find, but not as many.
Almost 4 years ago
Great review. I was going to disagree with you about the CLI documentation, but I found that the examples are really missing for the common use cases, as you stated, so I had to agree. The cookbook is getting better, but it's not yet comprehensive enough. Very good…
Almost 4 years ago
You really need to understand what the budget and objectives are. All of the firewalls mentioned above have their strengths and their advocates. I personally prefer Fortigate because they provide substantial functionality at very good price points, and that for the most…
Over 5 years ago
I would be interested to know what you found unintuitive about the rules. From your review it seems that the focus in more on the proxy than the firewall itself.
Almost 7 years ago
Palo Alto Networks technology is very, very good. It is robust, enterprise grade stuff that has excellent performance and is essentially a big boy's UTM solution. That said, it can be very expensive, as compared to other solutions, and it is quite complex to configure…

Reviews

Questions

Answers

Over 3 years ago
User Behavior Analytics - UEBA
Over 3 years ago
User Behavior Analytics - UEBA
Over 3 years ago
User Behavior Analytics - UEBA
Over 3 years ago
Firewalls
Over 3 years ago
Cloud Access Security Brokers (CASB)
Over 3 years ago
Firewalls
Over 3 years ago
Firewalls
Over 3 years ago
Log Management
Over 3 years ago
Server Virtualization Software
Over 3 years ago
Firewalls
Over 3 years ago
Firewalls
Over 3 years ago
Firewalls
Almost 4 years ago
Firewalls

Comments

Over 1 year ago
Endpoint Protection (EPP) for Business
Over 1 year ago
Endpoint Protection (EPP) for Business

About me

Andrew S. Baker is the President and Founder of BrainWave Consulting Company, LLC, where he provides Virtual CxO services (Cybersecurity, IT Operations, IT/Business Strategy & Integration) for small and mid-sized businesses.

For over 20 years he has been designing, deploying, and maintaining secure computing environments for organizations of all sizes. As a trusted business partner, Mr. Baker collaborates with business and IT leaders to develop robust technology architecture, identify and mitigate security risks, set technology strategy and direction, prepare and execute project plans, and deliver cost-effective solutions that position companies for sustainable growth. Previously, he successfully built and led IT and InfoSec teams for organizations such as OnSolve, SWN Communications, ARGI, Warner Music Group, The Princeton Review, Bear Stearns, About.com, and Lewco Securities.

Interesting Projects and Accomplishments