GeorgeCopeland - Thursday, January 25, 2018 8:28 AM
Frankly, unless you run a gateway packet inspection service (i.e. something that tries to determine malware intent in protocols) your firewall brand really doesn't matter as long as it is adequately secure. This isn't to say that firewalls aren't important, they are an important layer in security, just that they don't protect most systems from attacks because most attacks will pass through intentionally opened routes in the firewall. Why should an attacker overly care to hack a firewall when you've already opened a route? It's usually not worth the trouble and often requires a lot of specialist knowledge and the attack is much more likely to be noticed.