SmoothWall SmoothGuard 1000-UTM review
A wide range of security features for the price, but it isn't the easiest to configure and web-content filtering is poor.
Review Date: 19 Sep 2007
Reviewed By: Dave Mitchell
Price when reviewed: exc VAT; inc 1yr subscription for 250 users
SmoothWall has finally succumbed to the allure of the appliance. Its software has always offered a cost-effective firewalling solution, as it allows you to choose the hardware yourself. However, so many new components have been introduced to the base product, such as content filtering, antivirus and antispam, that it makes sense to offer them all in one box.
Some appliance vendors think they can get away with a cheap hardware platform, but the SmoothGuard 1000-UTM is a solidly built rack chassis with a decent processor, plenty of memory and seven Gigabit Ethernet ports. The web interface is easy on the eye, but it wasn't immediately obvious where some of the features are accessed from. Fortunately, installation is simple, as we defined the first port for our LAN with internal DHCP services and the second as our WAN connection with a fixed IP address.
The network ports can take on a range of roles so, as with Fortinet's FortiGate-224B, you can have internet access policies but also intrazone policies. By default, all zones are hidden from each other and you create bridging rules to allow specific zones to access others. For web filtering, the appliance can work in transparent and non-transparent modes, but in either case you'll need to configure client systems to use the appliance as a proxy. Non-transparent mode is the most versatile, as it brings in user authentication and allows extensive rules-based access policies to be applied to different users and groups. There are plenty of authentication modes to choose from, including the local user database or RADIUS, AD and LDAP servers.
The appliance uses a lot of open-source components, with ClamAV looking after web and email antivirus scanning and offering automatic updates as often as every hour. If you're not happy with this, you can use the ICAP server redirection feature and choose your own antivirus solution. Snort handles IDS functions and you can activate different rules and look only for particular attacks. The SmoothGuardian component provides web-content filtering and offers 53 URL categories to choose from. SmoothWall scores higher than many, as it also offers phrase checking within web-page content. Mailshell provides POP3 and SMTP antispam measures and is simple to use. It offers a range of RBLs, plus options to control attachment file sizes and scan messages for viruses.
Unfortunately, the URL filtering didn't impress, as with the games category blocked we tried to access 40 online bingo sites and were blocked from only 18. We used the same URLs with Websense Express and were blocked from 36 sites. Antispam performance was much better, as a four-day live test using the default sensitivity settings saw more than 90% of spam caught, with few false-positives.
For the price, SmoothWall offers a lot of security functions integrated into a well-specified hardware platform. Reporting and antispam are good, but configuration isn't easy and the content-filtering component could do better.
Author: Dave Mitchell
- What's on this week's PC Pro podcast?
- Kobo dives into waterproof tech with Aura H2O
- Google promises faster Chrome with 64-bit support
- iPhone 6 release date, rumours, specs and features: when is the iPhone 6 coming out in the UK?
- HP recalls laptop power cords over burn risk
- Motorola Moto 360, Moto X+1 and Moto G2 UK release date, specs and price
- Size matters: Apple working on 12.9in iPad
- Gaming DDoS: forget cyber-jihadis, they're just trolls
- Round-faced LG G Watch teased ahead of IFA
- Reader survey: What computing devices do you plan to buy?
- How to turn off Google Location Tracking
- 20 years of PC Pro: our greatest review mistakes
- 20 years of PC Pro: our first A-List
- Wikipedia's "right to be forgotten" protest hits the wrong note
- 3D printing hits the high street for plastic selfies
- 20 years of PC Pro: What amazed us in our first issue
- How Google Glass ruined my lunch hour
- Smartphone battery packs: can a USB power pack beat the festival battery blues?
- Windows Easy Transfer – not so "easy" in Windows 8.1
- Formula 1: what a difference virtualisation makes
- How to format a USB drive on a Mac or Windows
- What’s the best 4G network in the UK?
- How to set up a wireless hotspot for your business: give customers free or paid for internet access
- How to download YouTube videos: save YouTube videos to your iPhone, iPad, laptop or Android device
- How to access iCloud on a PC
- Nexus 5 vs Moto G 4G (2014 model)
- Chromecast vs Roku Streaming Stick vs Apple TV: what's the best TV streaming device?
- The 8 best small tablets of 2014: what's the best compact tablet?
- How to edit PDFs: make change to a PDF
- Building a patently better future
- 10 ways to make your business more secure
- Top five VoIP mistakes
- How to add in-app purchasing to an iPhone, Android or Windows app
- Remote-control ransomware: TeamViewer and software hardball
- Why laptops with serial ports matter to the Internet of Things
- Make your mobile battery last longer
- Small steps into handling Big Data
- Nexus 5: does it really run stock Android?
- How to get broadband to a garden office
- How to write your company's IT security policy