I haven't used Netgear's products really, but it sounds nice. My query about that product would be how it attempts to combat DoS attacks and what the IDS is really capable of.
My guess about the DoS deterrant it uses would be something along the lines of SYN Defender in Checkpoint Firewall-1 or Floodguard in Cisco PIX, but what kind of thresholds are they using and are they adjustable? Decent defense on the cheap if they have done it correctly.
The IDS it has may be less than interesting. I couldn't see any details regarding a signature database or if it is using some kind of anomaly detection engine. I've used enterprise class IDS in the field (Cisco, NFR, SecureNet Pro, Shadow, Snort (mostly counts these days)), but I have yet to see a SOHO IDS for that list price that really is worth anything, so it may or may not be useful. You may better off parsing firewall logs instead. However depending on what it can see without false positives, or worse, false negatives it may be useful for event corelation.
SPI firewall action would be pretty easy to incorporate into the product based on the fairly advanced free (BSD license style) packages available so I wouldn't be worried how well that operates.
The VPN description sounds good aswell. Supports the hashes, protocols and encryption algorithms I would be looking for in addtion to being able to do client to LAN and LAN to LAN connections (sweet). Sounds great for remote access to maintain things inside the network or virtually connect between multiple sites in safe manner.
So there's my long-winded two cents which may be all it's worth. Who's to say?
Top
