@quicky2g said:

@dafyre said:

@Jason said:

... require more fees for more throughput being used on the same device.

This is what drives me crazy about companies these days... Let me pay for a box that is sized for the network I want. If it can handle more than my current bandwidth, great! Don't make me buy a paper license just because I have a 300Mbit internet connection and your box is rated for 200 megs, but I am aactually seeing the full 300.

This is why I prefer to build my own firewall... Shorewall + Snort (or Suricata) + DansGuardian +ClamAV = Win. (Or you can just use pfSense)... Gotta build a beefy box to make it all run nice and smooth and not choke your internet.... But still probably a far cry cheaper than Palo Altos, et al.

You must have loads of fun troubleshooting all those individual systems when something is blocked that shouldn't be.

Ha ha ha. Nope. If it's a website, it's DansGuarian. If it's an App, then it is Snort / Suricata blocking it. 🙂 (In my last build, I used Suricata to block the applications we didn't want on the network).

If it's not Snort / Suricata, then it's the Firewall not allowing outgoing ports.