Skip Links

Network World

  • Social Web 
  • Email 
  • Close

(Comma separation for multiple addresses)
Your Message:
UTM Firewalls are enterprise ready
In this package: UTM firewalls: Ready for the enterprise | Top trends in enterprise UTM market | How to select enterprise UTM firewalls | Five tips on deploying enterprise UTM

UTM firewalls: Ready for the enterprise

Our testing shows that unified threat management appliances aren't just for the SMB market anymore
By Joel Snyder , Network World , 08/30/2007
  • Share/Email
  • Tweet This
  • Comment
  • Print

IT managers at small and midsize businesses like unified threat management appliances - firewalls that layer on antimalware protection, content filtering, antispam and intrusion prevention - because deploying a single, multi-function device reduces costs and simplifies configuration.

However, deciding whether and where to deploy UTM appliances in a large enterprise is a more complicated and difficult decision. The idea of a single point through which all traffic flows as an obvious locus for threat mitigation doesn't work when a network has dozens, hundreds or thousands of distinct locations. Also, because performance is a critical issue in large networks, savvy network managers often seek to distribute threat protection rather than centralize it, simply to reduce the likelihood of a performance bottleneck.

Why Small Companies Should Think Outside Box for Protecting Endpoints: Download now

Similarly, the style and quality of threat mitigation features one commonly sees in an SMB UTM may not be of interest to an enterprise, where requirements are more exacting and security architectures are more complex. For example, the antispam features and functionality in UTM firewalls pale compared with those in stand-alone enterprise-class dedicated antispam/antivirus appliances.

Enterprise UTM pros and cons

Related Content
Pros: Cons:
Complexity: High availability and scalability are dramatically simplified in UTM. Performance: Enabling threat response features causes a huge performance hit and makes performance unpredictable.
Management: A single management interface enables better coverage for less effort, and reduces the possibility of mistakes. Choice: Bundled threat response represents choices the vendor made based on partnerships and commercial interests, not necessarily matching what youÕd choose for your own network.
Flexibility: Ability to bring security services in and out of the equation quickly supports threat response requirements best. Features: Threat mitigation bundled into firewalls usually doesn't match the functionality and features in stand-alone products.
Cost: Long-term costs for UTM will likely be lower than individual point solutions. Separation: Different teams are responsible for different threats, and requiring coordination and agreement between them can be difficult and time-consuming.
Click to see: Enterprise UTM pros and cons

With such dramatic differences between SMB and enterprise requirements, is there a place for enterprise UTM firewalls? The answer is definitely "yes," for these three reasons: reduced complexity, simplified management and increased flexibility.

Reduced complexity

Enterprise network managers have long sought to include additional threat protection, especially intrusion detection/prevention systems (IDS/IPS) functions, both at the core and at the perimeters of their networks. However, the complexity of dropping standalone IDS/IPS boxes into a network has made them wary.

Building the "firewall sandwich," with load balancers surrounding a core of clustered firewalls, is well understood, but trying to scale that sandwich up with another layer of protection dramatically increases architectural complexity and potential instability.

  • Share/Email
  • Tweet This
  • Comment
  • Print

Comments (7)
Login
Forgot your account info?

RE: UTM firewalls: Ready for the enterpriseBy Anonymous on September 3, 2007, 8:21 pmI've been running a Sonicwall firewall for since 2004 and have had a great deal of success with it's all in one approach. There a generally 400-500 concurrent connections...

Reply | Read entire comment

SonicWALL with IPS, Spam, A/VBy Anonymous on September 4, 2007, 3:36 pmI'm curious as to whether you consider your environment "enterprise" or "SMB/SME." How many users and sites are in your network?

Reply | Read entire comment

UTM-Not ready for ANY responsible security adminBy Anonymous on September 4, 2007, 3:38 pmI just can't see the responsibility in putting all of your security eggs in one basket. The UTM approach proves that you get what you pay for. Sure a UTM solution...

Reply | Read entire comment

"Responsibility"By Joel Snyder on September 4, 2007, 9:50 pmHey, Anonymous: I hear you, and frankly, I think that your position is not only well-stated but also is easy to defend. However, I think that you're throwing stones...

Reply | Read entire comment

What means UTM?By Anonymous on September 5, 2007, 2:22 pmIs UTM related to MGD? I can't figure out all these acronyms. Is this supposed to be an article aimed at the informed public or is it an in-house note to be disseminated...

Reply | Read entire comment

Unified Threat ManagementBy Christine Burns on September 6, 2007, 6:54 amSorry for the confusion. UTM stands for Unified Threat Managegment, devices comprising a combination of firewall, network intrusion prevention (ISP), virtual private...

Reply | Read entire comment

View all comments

Add comment
Anonymous comments subject to approval. Register here for member benefits.
Have a NetworkWorld account? Log in here. Register now for a free account.

Most Read

View more Most Read

Videos

rssRss Feed

Latest News

rssRss Feed