Posted by: Jason Tramer
Let me preface this blog entry by saying that I like Watchguard firewalls, I acutally like them a lot, and no firewall products out there lack flaws ….. here comes the but … but sometimes some of the issues I see with Watchguards really make me scratch my head and wonder what the developers were thinking. On the Edge devices, which for those of you who are not aware of them are their entry level line for small to medium sized business’s as well as for branch offices, they have the options for both a trusted and an optional(DMZ) networks. The problem is that it lacks the ability to insert any type of granular control between them. Is it just me or does this not completely negate the entire purpose of a DMZ network? You can open all traffic between them which is completely useless or completely close all traffic which is fine for a guest network I guess, but you could accomplish the same task by putting a second $50 dollar linksys router in. What is even more mind boggling is that other similiar products on the market all have this ability so I am not sure why the Edge’s lack it other than that I assume they just don’t like me very much.