what was missing in cisco utm for routing support?
Latest security headlines from Network World:
Microsoft to release four critical patches
How carriers batten down the hatches for hurricanes
Survey: VARs concerned about cybersecurity, health care
|
Does Verizon's Voyager stack up to the iPhone? |
|
|
5 IT skills that won't boost your salary 
[1,407]
Women 4 times more likely than men to cough up personal info [589]
Japan's 10 funniest tech-related commercials [Videos] [407]
Throwing away a promo CD is "unauthorized distribution"? [1,265]
Adults too quick to dismiss educational video games [682]
Attack of the iPhone clones [Slideshow] [578]
10 things IT needs to know about AJAX [1,258]
This Year's 25 Geekiest 25th Anniversaries [Slideshow] [409]
|
|
RE: Cisco UTM
Well, a better question is: "what is in the PIX/ASA for dynamic routing?" The answer is "not very much."
Cisco's current design for the ASA is not going into a heavily routed environment. If you want to do that, you'd have to sandwich their ASA between more capable IOS-ish boxes. Or, go with FWSM in a Cat switch. Certainly, the ASA/PIX is not even a shadow of the incredible routing in IOS---features, debugging, protocols, manageability, etc.
Some of this is probably a self-fulfilling prophecy: because routing sucks, people don't use it. But that's clearly isn't valid across Cisco's security products, because the ISR is both routing-studly and security-featureful (although not as much as the ASA/PIX, obviously).