[Date Prev][Date Next][Thread Prev][Thread Next][Thread Index]

Re: [fw1-gurus] Query regarding ASA multiple security context Vs checkpoint VSX

Subject: Re: [fw1-gurus] Query regarding ASA multiple security context Vs checkpoint VSX
From: Pierre Lamy <pierre@xxxxxxxxxx>
To: "Gopi Krishna S (gopis)" <gopis@xxxxxxxxx>
Cc: fw1-gurus@xxxxxxxxxxxxxxxxxx
Date: Tue, 10 Mar 2009 08:58:54 -0500

It sounds like ASA has a bit less functionality than VSX. VSX doeseverything that you mentioned ASA does, as well as VPN and dynamic routing.

On IPSO at least, ipsrd (routing daemon) runs in separate instances toprovide OSPF for example.

VSX and any other security virtualization technology requires deeptechnical understanding of network topology, management best practices,redundancy etc. If you don't have these in your organization,outsourcing the management of virtual systems to a reseller might be thebest solution.

I am sure that Check Point Sales has presentations and technical writeups of the differences between Cisco's ASA technologies compared to VSX,you should contact them.


Pierre

Gopi Krishna S (gopis) wrote:

Hi Gurus,
I’ve a query regarding the multiple context mode functionality in ASAcomparing with CheckPoints VSX.
In ASA multiple-context mode You can partition a single securityappliance into multiple virtual devices, known as
security contexts. Each context is an independent device, with its ownsecurity policy, interfaces, and administrators.
Multiple contexts are similar to multiple standalone devices. Manyfeatures are supported in multiple context mode,
which include routing tables, firewall features, IPS, and management.Some features are not supported, which include
VPN and dynamic routing protocols.
Does this is same as CheckPoint VSX which allows to create virtualsystems?? And
Which other CheckPoint’s security appliances support this multiplesecurity contexts??
Your help is highly appreciated in this regard.

Thank You.

Regards

Gopi Krishna.S

------------------------------------------------------------------------

_______________________________________________
fw1-gurus mailing list
fw1-gurus@xxxxxxxxxxxxxxxxxx
http://lists.phoneboy.com/listinfo.cgi/fw1-gurus-phoneboy.com

_______________________________________________
fw1-gurus mailing list
fw1-gurus@xxxxxxxxxxxxxxxxxx
http://lists.phoneboy.com/listinfo.cgi/fw1-gurus-phoneboy.com

References:
- [fw1-gurus] Query regarding ASA multiple security context Vs checkpoint VSX
  - From: Gopi Krishna S (gopis)

Prev by Date: Re: [fw1-gurus] Query regarding ASA multiple security context Vscheckpoint VSX
Next by Date: Re: [fw1-gurus] Query regarding ASA multiple security context Vs checkpoint VSX
Previous by thread: Re: [fw1-gurus] Query regarding ASA multiple security context Vscheckpoint VSX
Next by thread: Re: [fw1-gurus] Query regarding ASA multiple security context Vs checkpoint VSX
Index(es):
- Date
- Thread