I have a network running 100 users with pc and 20 SIP phones. I also have 3 servers runnign an extranet on a 100GB leased line.
My primary device is a ZyWall 35 and I have decided that this device is a bottle neck and a limit to performance.
What device should I look at as an upgrade? I have no idea where to start and already bored of slick salesmen who know nothing.
Aside from the obvious: you can build a linux/bsd router box that can do this for next to nothing. I've heard great things about the netscreen 25's but they stopped selling them:
The NetScreen-25 is end of sale, and in its place, we recommend the SSG140, the SSG320M, or the SSG350M, high-performance security appliances that offer LAN/WAN connectivity for regional and branch office deployments.
I've had good luck with Netscreen's in the past, though the Jun-os stuff is hella different if your used to ciso and work in the CLI a lot. Their web gui is pretty slick though.
I've had a lot of good experiences with pfSense which is a BSD based distribution. It has been very stable with uptimes of >9months before reboot for infrastructure maintenance.
I've tended to use it where I've had multiple networks and needed to setup complex NAT/routing between them obviously with firewalls and logging.
If you like your Zywall.. the next model up? Alternatively, look at SmoothWall - be aware that I am biased, I work for SmoothWall, but not in the capacity of "know nothing sales droid" so you're safe ;)
For that size of company I can recommend Watchguard Firewalls.
I have very good experience with those boxes, they are very easy
to setup and working without major glitches. Also their support and
customer care is very great.
Take a look at the Firebox® X Core™ e-Series on their site.
