- 10 open source companies to watch
- Mythbuster busts his own tale
- $208 million petascale computer gets green light
- Sony recalls 73,000 Vaio laptops
- Chrome and Firefox and add-ons
Newsletters | Podcasts | Chats | Opinions | RSS Feeds | This Week In Print | IT Careers | Community | Reports | Downloads | Slideshows | New Data Center
Partner Sites:App Performance | On Demand Security | Networking Solution | SOA | Value of WDS
The hosting arm of Xerox has found a way to save money by switching from multiple brands of firewall to a single vendor's whose gear supports other functions as well, enabling the provider to eliminate separate network devices and their separate management consoles.
Based on Xerox's return-on-investment calculations, the Stonesoft firewalls paid for themselves in just over a year when used only as firewalls. But when adding their VPN, content switching and multi-link WAN load-balancing capabilities - which were not considered when the gear was bought - the devices have generated more savings, according to Denys Foley, the infrastructure manager for Xerox Global Services in Rochester, N.Y.
"We spend less time setting up VPNs and their policies," he says. "I have also taken my content switches out of the Web farm, and I let the firewalls handle distributing the load among Web servers. I get rid of licenses and training, and I can manage all [these functions] from one console."
Xerox Global Services hosts data for other companies at its data centers in Rochester and in Charlotte, N.C., and requires high-availability links to its customers. That includes high availability for the firewalls that protect the connections, Foley says. So, four years ago, using firewalls from Check Point, Cisco and Network Associates, the company sought separate clustering software to bind multiple firewalls together.
In the course of that search, Foley came across Stonesoft, which makes StoneBeat clustering software for Check Point firewalls and learned that the company's StoneGate firewalls included clustering as a standard feature, so he gave one a try. He liked it and over the past three years has replaced all but two of his old firewalls at Xerox's 20 sites with StoneGates.
"I think the thing that caught our eye more than anything was the management console and the ability to cluster," he says.
The big push for clustering was so if one firewall failed, another automatically assumed its role, making protection reliable enough that Xerox didn't need a second and third firewall administrator shift to be on hand if something went wrong. "Staffing at second shift was three people; after midnight the third shift was one or two," Foley says. "We no longer needed them. The cost of this type of people was very high compared to putting in clustered firewalls."

Gartner summarizes its view on Application Delivery Controllers, evaluates strengths and weaknesses...
Vulnerability Management For DummiesDownload this concise book "Vulnerability Management for Dummies," to learn about the simple steps...
The ROI and TCO Benefits of Data Deduplication for Data Protection in the EnterpriseThis paper examines and quantifies the costs and benefits of backup with deduplication storage as...

Life on the edge of your WAN has changed dramatically. With the need to deliver advanced services,...
PoE Plus: Impact on the PoE MarketThe standard for Power over Ethernet (PoE), IEEE Std. 802.3af(tm)-2003, advanced networking,...
Harnessing the power of communications to increase workplace performanceDue to the convergence of IT and telecommunications technologies, the business workplace has been...

We have so many holes punched in our firewalls today that many industry insiders question the value...
The self-managed networkWe aren't there yet, but advances in network and systems management tools are making it possible to...
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comment