ZyXEL ZyWALL USG 50 review
This little appliance packs in the security features, but these up the price and the anti-spam is ineffective
Review Date: 9 Sep 2011
Reviewed By: Dave Mitchell
Price when reviewed: £185 (£222 inc VAT)
Features & Design
Value for Money
Now on a third-generation hardware platform, ZyXEL’s new ZyWALL USG 50 offers small businesses a complete security solution at an apparently low price. It’s designed for small offices of up to ten users, although this is a limitation of the hardware; it isn’t because of a per-user licensing scheme.
The appliance gets the benefit of Gigabit Ethernet all round, with four LAN ports and two for WAN connections – it can perform load balancing or failover across them. The two USB ports support a very small selection of 3G adapters that can be used for failover.
The USG 50 offers a heap of security measures, but many are optional extras. Extra licences are required for antivirus, content filtering, IDP and application patrol, and although subscriptions are reasonable, they will double your outlay for the appliance in one year.
The web interface has been redesigned, with the new dashboard using widgets for various status readouts. We found initial installation easy enough, and the web interface offers wizards for single and dual-ISP scenarios.
We recommend setting up objects next, as these define users, groups, addresses, services and schedules, and are used in the majority of security policies. Plenty of user authentication schemes are supported, although the appliance’s local database should be sufficient.
Security policies are applied to zones representing different groupings of physical ports. Zones are used by firewall rules to define inbound and outbound routes through the appliance. These also apply to the antivirus and IDP components, and for the former you can decide whether to scan HTTP, FTP, POP3, SMTP and IMAP4 protocols.
For performance testing, we used the lab’s Ixia Optixia XM2 chassis equipped with two Xcellon-Ultra NP blades. Using IxLoad to simulate ten web clients, we recorded a throughput of 131Mbits/sec with the firewall enabled and 30Mbits/sec with AV and IDP also active. During the tests, appliance CPU usage was seen to settle at 98%, showing that ten clients is a realistic limit.
Anti-spam is included as standard, but don’t get excited: all you can do is create black and white lists for message subject keywords, and apply up to five DNSBL servers. Using five DNSBL servers, including Spamhaus and Spamcop, we tested with live mail over a two week period and saw it stop less than 5% of spam.
ZyXEL’s application control can manage a wide range including IM, P2P and VoIP. For Windows Live Messenger we could stop users logging in or block them from using video, chat and file transfer; while for BitTorrent and FTP we could allow access but apply bandwidth restrictions.
Web filtering is provided by Blue Coat’s Cloud Service, and uses filter policies applied to objects such as systems, subnets and users. It provides over 70 different categories, and we found it extremely efficient.
The ZyWall USG 50 offers an impressive range of security measures, although most are optional and will push up the price. ZyXEL’s anti-spam is of limited value, so we recommend checking out Netgear’s ProSecure UTM5; it offers an effective anti-spam service, a similar level of features and is easier to install.
Author: Dave Mitchell
- Microsoft patches TIFF flaw in next Patch Tuesday
- Microsoft expands encryption over NSA spying "threat"
- UK Cloud Awards 2014: nominations now open
- BlackBerry says "we're still alive" as sales hit new low
- Has HP turned a corner?
- Adobe admits it's struggling to notify hack victims
- Microsoft rolls out Office 365 admin app for mobile
- Office 2013 Service Pack 1 to arrive early next year
- Backup the best defence against CryptoLocker
- UK SMBs can now buy ads on Twitter
- Tech City: Easy to score when you move the goalposts
- How to remove SkyDrive from the Windows 8.1 Explorer
- Switching from iPhone to Android? Switch off iMessage
- Why is Google pumping more money into Firefox?
- Sky Broadband Shield review
- Samsung Galaxy S4: how to double your battery life
- Motorola Moto G review: first look
- IBM Watson meets Willy Wonka
- Google’s support policies shove users towards Chrome
- Lenovo Yoga Tablet review: first look
- gTLDs: what your business should know about new domain names
- Can Microsoft survive? A look at servers and tools
- Can Microsoft survive? The future of Office
- A real-world guide to business VoIP
- Sack your PA: how to stay on top of your work life
- Power lies with the internet giants, not the governments
- Software subscriptions return us to a life of servitude
- How to get a job in cloud computing
- Are today's tech start-ups simply get-rich-quick schemes?
- Choosing the right tablet for business
- The importance of load balancing
- Windows Phone App Studio: an easy way to create your first Windows Phone 8 app
- The end of Windows XP support: what it really means for businesses
- Don't rely on Chrome's password vault
- Using Buffer to manage your social media
- Microsoft needs its own Steve Jobs
- Forget credit cards: hackers want your Facebook account
- Can't get fast enough broadband? Here's what to do
- Leap Motion and the battle against UI stagnation
- How to build a really bad network
There are dozens of exciting prizes up for grabs on PC Pro Competitions. All our competitions are free to enter. Try your luck.ENTER NOW