Difference between a Cisco firewall and my default firewall - Techist - Tech Forum

Go Back   Techist - Tech Forum > Internet > Computer Networking and Internet Hardware
Click Here to Login
Reply
 
Thread Tools Display Modes
 
Old 02-07-2018, 05:51 AM   #1 (permalink)
Super Techie
 
fallenapples's Avatar
 
Join Date: Nov 2008
Location: Toronto, Ontario
Posts: 379
Default Difference between a Cisco firewall and my default firewall

I am currently studying for MY MTA 98-366. What is the different between the standard firewall that comes with your wireless router your isp provides compared to a cisco firewall.. It's still a router with a switch correct? Why is it advertised as a just a firewall? Do all wireless routers have firewalls?
__________________

__________________
|ASUS M5A97 R2.0| AMD FX 6300 3.5 GHZ|16GB (4x4) 1600MHZ DDR3 RAM|ASUS Radeon HD 7770 1GB| Kingston HyperX RAM|Kingston Hyper X 120 GB SSD|WD Green 1TB HDD|


|ASRock N68C-GS FX|AMD Athlon II X3 450 3.2 GHZ|G.Skill 8GB (2x4) 1600MHZ DRR3 RAM |Geforce 9800 GT 1GB DDR5|Seagate 500 GB HDD|



|Macbook Pro- Intel Core i5 2.4 GHZ|8GB DDR3 RAM|Samsung Evo 840 240GB SSD|


fallenapples is offline   Reply With Quote
Old 02-07-2018, 12:01 PM   #2 (permalink)
Super Techie
 
Join Date: Jan 2013
Location: USA
Posts: 407
Default Re: Difference between a Cisco firewall and my default firewall

Quote:
Originally Posted by fallenapples View Post
I am currently studying for MY MTA 98-366. What is the different between the standard firewall that comes with your wireless router your isp provides compared to a cisco firewall..
Intended use and everything that goes with it.

Your home router has a basic packet filter slapped on for some basic, added protection. Some of the more advanced ones will even have stateful inspection. I'm sure that NGFW features will make it to the consumer market in due time. The main takeaways are that the technology is very far behind enterprise stuff and it's really there as a marketing gimmick for clueless home users who are scared of getting hacked.

An enterprise firewall is more of a security appliance that provides a suite of security services needed for business use. These days everything can do packet filtering and even routing, but a firewall is expected to have VPN functionality, clustering/failover, and alerting/reporting, at the minimum. The new thing is NGFW which includes application level filtering, an integrated IPS and centralized management.

It also needs to be able to handle tens of thousands of concurrent connections and it will have the hardware needed to do that - your typical D-link router is going to crap out if it tries to pass normal traffic for a thousand devices, nevermind encrypted VPN traffic.

Really, I think the better question would be the difference between modern enterprise routers, switches, and firewalls. The difference between consumer grade and enterprise gear is like comparing a bicycle with a racecar.

Quote:
It's still a router with a switch correct?
Router, yes, switch - not necessarily. A lot of firewalls do have switchports, but some don't. Some will have layer 3 interfaces but allow for virtual switching through software. It's not a defining feature. Even if you do have swichports, you'll still need a switch unless you've only got a small handful of physical devices.

Quote:
Why is it advertised as a just a firewall?
As I mentioned before, if you're shopping for a firewall then you're looking for a particular set of features and capabilities beyond just basic packet filtering. If someone advertises a firewall then I know what the basic feature set is going to be.

Quote:
Do all wireless routers have firewalls?
Pretty much all modern consumer grade home routers have some kind of firewall functionality included, these days.
__________________

DistraughtSysop is offline   Reply With Quote
Old 02-12-2018, 08:42 PM   #3 (permalink)
Build Guru
 
PP Mguire's Avatar
 
Join Date: Dec 2004
Location: Fort Worth, Texas
Posts: 28,598
Default Re: Difference between a Cisco firewall and my default firewall

Quote:
Originally Posted by DistraughtSysop View Post
Intended use and everything that goes with it.

Your home router has a basic packet filter slapped on for some basic, added protection. Some of the more advanced ones will even have stateful inspection. I'm sure that NGFW features will make it to the consumer market in due time. The main takeaways are that the technology is very far behind enterprise stuff and it's really there as a marketing gimmick for clueless home users who are scared of getting hacked.

An enterprise firewall is more of a security appliance that provides a suite of security services needed for business use. These days everything can do packet filtering and even routing, but a firewall is expected to have VPN functionality, clustering/failover, and alerting/reporting, at the minimum. The new thing is NGFW which includes application level filtering, an integrated IPS and centralized management.

It also needs to be able to handle tens of thousands of concurrent connections and it will have the hardware needed to do that - your typical D-link router is going to crap out if it tries to pass normal traffic for a thousand devices, nevermind encrypted VPN traffic.

Really, I think the better question would be the difference between modern enterprise routers, switches, and firewalls. The difference between consumer grade and enterprise gear is like comparing a bicycle with a racecar.

Router, yes, switch - not necessarily. A lot of firewalls do have switchports, but some don't. Some will have layer 3 interfaces but allow for virtual switching through software. It's not a defining feature. Even if you do have swichports, you'll still need a switch unless you've only got a small handful of physical devices.

As I mentioned before, if you're shopping for a firewall then you're looking for a particular set of features and capabilities beyond just basic packet filtering. If someone advertises a firewall then I know what the basic feature set is going to be.

Pretty much all modern consumer grade home routers have some kind of firewall functionality included, these days.
We already have NGFW in the consumer space thanks to Ubiquiti. They don't apply everything that is inclusive to "NGFW" but most of it. The only thing I'd really complain about is the VPN is a bit lacking but it is indeed there and working. They're not done with their feature set yet though.
__________________
"Resolution is just a number." #Ubisoft
Origin/Steam = PP_Mguire Twitch = pp_mguire Instagram = ppmguire PSN = PP_Mguire

Access to my Plex PM me.
PP Mguire is offline   Reply With Quote
Old 02-14-2018, 08:17 AM   #4 (permalink)
Super Techie
 
Join Date: Jan 2013
Location: USA
Posts: 407
Default Re: Difference between a Cisco firewall and my default firewall

I don't know if I'd put Ubiquiti on the same tier as something like Linksys, I've always seen it as more of a "prosumer" grade product line. I'd say that anything that you can manage with a controller isn't really meant for typical home use, actually.
DistraughtSysop is offline   Reply With Quote
Old 02-14-2018, 11:13 AM   #5 (permalink)
Build Guru
 
PP Mguire's Avatar
 
Join Date: Dec 2004
Location: Fort Worth, Texas
Posts: 28,598
Default Re: Difference between a Cisco firewall and my default firewall

It's prosumer with enterprise functionality for a consumer price. Naturally I wouldn't put it on the same tier as consumer routers because they're all useless junk, BUT it's still pretty simple to get going. IMO somebody looking for gear like that probably has the knowhow or at least technological basics to follow some simple instructions to get Unifi going. The rest will go to Best Buy and buy a Netgear or whatever that's practically plug and play. Idk that's how I've always looked at it because setting up Ubiquiti gear is nowhere near as difficult as true enterprise stuff.

Still though, being prosumer I'd still classify Ubiquiti gear as more consumer grade equipment that doesn't suck *** and it has a lot of NGFW stuff built in with more to come. I'm waiting on that crispy WAN MAC spoofing to show up.
__________________
"Resolution is just a number." #Ubisoft
Origin/Steam = PP_Mguire Twitch = pp_mguire Instagram = ppmguire PSN = PP_Mguire

Access to my Plex PM me.
PP Mguire is offline   Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
definition and difference between a class and a library office politics Programming 1 05-10-2010 10:42 AM
What is the difference between between L1, L2 and L3 Cache? cheerios Overclocking and Modding 1 04-06-2004 09:17 AM
difference between Tray and Boxed CPU TaiwaneseKai Overclocking and Modding 2 11-15-2003 10:58 PM
Question about the difference of how resources are read between ME and XP PRO. Zehlek Microsoft Windows and Software 12 02-04-2003 05:30 AM



Copyright 2002- Social Knowledge, LLC All Rights Reserved.

All times are GMT -5. The time now is 05:48 AM.


Powered by vBulletin® Version 3.8.8 Beta 1
Copyright ©2000 - 2018, vBulletin Solutions, Inc.