Hey Willie, thanks for another great video, this certainly looks like a very useful box, all in one solution which is what a lot of people will find very useful. Saves on space, power requirements thus cutting bills and saving money with the initial purchase. We all have our favourite phrases and I have to say I find your's very good, makes me smile everytime 'Super Excited'. I'm going to start using that in some of my videos. I'm just waiting to receive, which I hope is the GCC6010(W) model, so hope to test that one out. Looking forward to seeing the next videos in this GCC series.
Very interesting. The UI looks very responsibe and intuitive. I'm not yet sold on adding PBX functionality to a Firewall given the security risk but for the price it should be really attractive for SMBs
Thanks for another great video, Willie. Also, somehow my notifications were turned off for your channel, something I did not do myself, which is why I've been missing videos.
Can you get a shell into the system? What version of Linux or BSD is running under the hood? Are there rack ears included, or is there a rack mountable version? This device looks great, and the peice is lower than what i paid for my OPNSense box i got a year ago.
thanks for the intro video. not sure why, but my distributor still does not have them in stock. I may have to do what you did and buy it retail. great intro, looking for to more!
Thanks for this awesome video. I was completely unaware of this vendor (he says, having invested quite a bit in Unifi switches and APs). My current setup is an OPNSense box with downstream Unifi self-hosted controller and AP, and a mix of Unifi and QNAP switches. This is a home/home office setup with a 1 Gbps fiber WAN connection and internal VLANs, with a 10 Gbps LAN segment. Are there use cases where the GCC product is the preferred option?
I see some references to "dynamic routing" in the documentation but no mention of OSPF or BGP support. It would be a major miss on Grandstream's part if this was left out.
Due to the introduction of potentially compromised devices on the lan (such as iot as well as video surveillance), I now consider it a requirement for computers and servers to be grouped and placed on separate subnets/broadcast domains and use inter-lan firewall rules to govern client access to services. This means having multiple LAN ports that are layer 3 routable instead of just layer 2 switched lan ports, or implement vlan port assignments between the switch ports and the layer 3+ firewall & routing on the backplane. It also means wireless solutions need to support vlans or operate on an isolated wireless network to protect computing devices. Unfortunately this means network security appliances which can get expensive to purchase as well as keep subscriptions up to date. There is definitely a demand in the market that is yet to be fulfilled and this demand is likely to increase as more devices enter the market.
Indeed, the GCC6010 is equipped with routing and VLAN capabilities, which allows for the consolidation and protection of internet ingress data across multiple WAN ports. This includes defense against virus attacks, intrusion prevention system (IPS) threat detection, and the secure blocking of hazardous websites. Internally, the device features numerous LAN ports and SFP optical ports that can be logically divided into separate VLANs, catering to the specific needs of office networks, VoIP telephony, surveillance systems, and IoT devices. By leveraging policy routing, firewall configurations, and traffic shaping mechanisms, administrators can enforce granular access controls and manage bandwidth allocation. Furthermore, the GCC6010 supports Quality of Service (QoS) settings to ensure that SIP-based voice communications and video conferencing sessions receive preferential treatment on the network, guaranteeing smooth and reliable service delivery.
I have an opnsense setup. Opnsense FW on a minipc, 8port managed tplink switch and 2 7660. Got vlans across all devices with different ssid and rules etc. Am looking to upgrade to a whole grandstream setup. Really underrated imo
Does this firewall have a traffic monitor (Built in Wireshark) similar to the traffic monitor on Watchguard firewalls? Allowing you to see traffic in real time and providing filters to help you look for specific things?
@@wyomingcody There are very few pieces of expensive software that allow that. This would be like UniFi but there's way more configuration flexibility with the GS gear.
@@WillieHowe Looking at the difference between this and a GWN7003. In projects that don't require UC or WiFi, do you feel there is benefit in going for GCC over GWN from a Firewall point of view?
That is a very attractive firewall. Thanks for the video I'm looking into it now.
Hey Willie, thanks for another great video, this certainly looks like a very useful box, all in one solution which is what a lot of people will find very useful. Saves on space, power requirements thus cutting bills and saving money with the initial purchase. We all have our favourite phrases and I have to say I find your's very good, makes me smile everytime 'Super Excited'. I'm going to start using that in some of my videos. I'm just waiting to receive, which I hope is the GCC6010(W) model, so hope to test that one out. Looking forward to seeing the next videos in this GCC series.
This device looks SWEET! Love the UI. Gotta get my hands in one.
Very interesting. The UI looks very responsibe and intuitive. I'm not yet sold on adding PBX functionality to a Firewall given the security risk but for the price it should be really attractive for SMBs
@@rcortesg it is snappy. I think for SMB converged infrastructure is OK.
Thanks for another great video, Willie. Also, somehow my notifications were turned off for your channel, something I did not do myself, which is why I've been missing videos.
Can you get a shell into the system?
What version of Linux or BSD is running under the hood?
Are there rack ears included, or is there a rack mountable version?
This device looks great, and the peice is lower than what i paid for my OPNSense box i got a year ago.
thanks for the intro video. not sure why, but my distributor still does not have them in stock. I may have to do what you did and buy it retail. great intro, looking for to more!
Nice ! Colab coming soon !!
I'd consider replacing my udm pro if the ids/ips throughput was closer to line rate. It's a really interesting device for prosumer as well.
@@BlueFalc0n Small businesses have started snapping these up. Most SMBs don't flex their Internet speed like home users or home lab folks.
@WillieHowe I can see that. I just like having that capacity for future proofing myself.
Thanks for this awesome video. I was completely unaware of this vendor (he says, having invested quite a bit in Unifi switches and APs).
My current setup is an OPNSense box with downstream Unifi self-hosted controller and AP, and a mix of Unifi and QNAP switches.
This is a home/home office setup with a 1 Gbps fiber WAN connection and internal VLANs, with a 10 Gbps LAN segment.
Are there use cases where the GCC product is the preferred option?
Wish they had a 10GB SFP+ version
@@marco114 keep your eyes peeled
I had the 7003 and loved it but throughput tanked when acceleration was enabled for web filter. 1gb symmetrical would slow down to 325mb.
I see some references to "dynamic routing" in the documentation but no mention of OSPF or BGP support. It would be a major miss on Grandstream's part if this was left out.
Where at in the documentation?
Would be EXTREMELY curious to know how the GCC series would stack up against the Fortigates or Sophos XGS
One site has the GCC6010W listed at $249.
a non biased review i hope, would you say this equals to fortinet's firewalls?
The switches really blew me away for the price. Have you done any heavy routing tests? Any quirks?
Compared to pfsense?
pfsense will be less feature than this, especially the firewall security engine updated fron grandstream's server and AI recognization feature
@@tm02019au contraire, i would put this in the USG category. PfSense and OpnSense have more features particularly with extensions.
This is a better class of device.
How expensive is the annual license?
Thanks Willie
@@drreality1 still waiting for the pricing but I'll let everyone know as soon as I know.
Thank you Willie! Very nice. One question: Are you moving away from Ubiquity for good and why?
Thanks again and keep up the good work!
@@gyorgy-belaandras6962 We won't move away from them for all installs. It's good to have a healthy mix of vendors to meet all needs.
Question? Is the additional gigabit Ethernet ports hav individual VLAN capabilities?
@@rdottwordottwo2286 yes
Yea! I am thinking about changing to this device since unifi is requiring geo location information.
Redundant 10-57 v power inputs like MikroTik ? Exposure to grid sticks and wires will stress equipment to failure. The Grid is #1 target in conflict.
Due to the introduction of potentially compromised devices on the lan (such as iot as well as video surveillance), I now consider it a requirement for computers and servers to be grouped and placed on separate subnets/broadcast domains and use inter-lan firewall rules to govern client access to services.
This means having multiple LAN ports that are layer 3 routable instead of just layer 2 switched lan ports, or implement vlan port assignments between the switch ports and the layer 3+ firewall & routing on the backplane.
It also means wireless solutions need to support vlans or operate on an isolated wireless network to protect computing devices.
Unfortunately this means network security appliances which can get expensive to purchase as well as keep subscriptions up to date.
There is definitely a demand in the market that is yet to be fulfilled and this demand is likely to increase as more devices enter the market.
Use Router OS / Mikrotik. Bulletproof networking if you can design
Indeed, the GCC6010 is equipped with routing and VLAN capabilities, which allows for the consolidation and protection of internet ingress data across multiple WAN ports. This includes defense against virus attacks, intrusion prevention system (IPS) threat detection, and the secure blocking of hazardous websites. Internally, the device features numerous LAN ports and SFP optical ports that can be logically divided into separate VLANs, catering to the specific needs of office networks, VoIP telephony, surveillance systems, and IoT devices. By leveraging policy routing, firewall configurations, and traffic shaping mechanisms, administrators can enforce granular access controls and manage bandwidth allocation. Furthermore, the GCC6010 supports Quality of Service (QoS) settings to ensure that SIP-based voice communications and video conferencing sessions receive preferential treatment on the network, guaranteeing smooth and reliable service delivery.
I have an opnsense setup. Opnsense FW on a minipc, 8port managed tplink switch and 2 7660. Got vlans across all devices with different ssid and rules etc. Am looking to upgrade to a whole grandstream setup. Really underrated imo
Does this firewall have a traffic monitor (Built in Wireshark) similar to the traffic monitor on Watchguard firewalls? Allowing you to see traffic in real time and providing filters to help you look for specific things?
It does have some of this functionality -- we'll be diving in deep!
@@WillieHowe looking to replace my sophos home firewall for my home lab definitely interested in seeing more, also how much is the UTM after year one
Great overview Willie. Do you see any integration capability with other provider equipment such as Unifi APs/switches?
@@wyomingcody There are very few pieces of expensive software that allow that. This would be like UniFi but there's way more configuration flexibility with the GS gear.
SSL inspection?
What CPU is in this thing?
How does this compare to the GWN7000 series?
@@timd6324 it's a totally different class of device. GCC has multiple modules that do more than just the firewall and routing.
@@WillieHowe Looking at the difference between this and a GWN7003. In projects that don't require UC or WiFi, do you feel there is benefit in going for GCC over GWN from a Firewall point of view?
@@Jacob-ko2ht depends on your security requirements
Why do you not like universal plug and play?
I prefer to have control of my firewall.
Willie, great presentation like your Synology presentations! Is it SDN? How do the layer 7 rules look? How does it compare to UI?
@@gld1010 All will be revealed!
@@WillieHowe Am I getting ahead of the program? ... lol
I still prefer my Firewalla for the ease of use and features it comes with plus no recurring licensing fee.
Comparing apples to oranges there
Can this block p2p?
@@YuvindraOjha-fq6wu yes
Hey Willie will this allow you to connect your tailscale account to it
And also can I use my nord vpn on there also
I am just curious
@@Nosjamesmenzer Great questions -- we will try it out!
@@WillieHowe alright thanks
That's a hard pass from me. If their phones and ATAs are anything to go by I'll stick with my off-lease dell sff running pfsense.
As with everything in IT - YMMV