Это видео недоступно.
Сожалеем об этом.
This should be your next firewall - GCC Series
HTML-код
- Опубликовано: 3 июл 2024
- The GCC6010 Series provides an extraordinary all-in-one solution that redefines the communications experience by merging your unified communications and networking solutions into one platform. These state-of-the-art devices combine the functionality of 4 products to provide an all-in-one solution that includes a VPN router, next-generation firewall, IP PBX, and network switch or Wi-Fi access point. With the GCC Series, you can create and manage wired, wireless, and VPN networks, provide enterprise-grade network security, and utilize a market-leading communication and collaboration
platform. These flexible devices provide unified management and centralized control of all Grandstream endpoint solutions, including Wi-Fi APs, network switches, IP Phones, and more. The GCC Series allows full UC, networking, and security solutions to be configured in minutes and managed through the cloud with the Grandstream Device Management System (GDMS), and can also be managed through our mobile app, local Web UI, and SSH console management. Ideal for small-to-medium sized businesses, the GCC6010 Series provides an all-in-one platform that combines all business data,
security, communication, and collaboration needs into one device - making it easier and more affordable than ever to build state-of-the-art communication solutions.
I bought one of these devices and Grandstream sent me one. Come back for the next videos!
www.grandstrea...
Join our community here: community.will...
Hire us! williehowe.com
Want to join us in learning how to deploy network services like this? Put your name on the training list now: williehowe.com...
Name Cheap Affiliate Link: namecheap.pxf....
Affiliate Links (I earn a small percentage of the sale if you use these links):
UniFi Store General Link: store.ui.com/?...
My AmazonLink: www.amazon.com...
Netool: netool.io use code WHT to save at least 10%!
Digital Ocean Affiliate Link: m.do.co/c/39aa...
Patreon Link: / williehowe
Contact us for network consulting and best practices deployment today! We support all Grandstream, Synology, DrayTek, Obihai, Poly, Ubiquiti, MikroTik, Extreme, Palo Alto, and more!
Come back for the next video!
Twitter - @WillieHowe
TikTok - @whowe82
SUBSCRIBE! THUMBS-UP! Comment and Share!
This device looks SWEET! Love the UI. Gotta get my hands in one.
Hey Willie, thanks for another great video, this certainly looks like a very useful box, all in one solution which is what a lot of people will find very useful. Saves on space, power requirements thus cutting bills and saving money with the initial purchase. We all have our favourite phrases and I have to say I find your's very good, makes me smile everytime 'Super Excited'. I'm going to start using that in some of my videos. I'm just waiting to receive, which I hope is the GCC6010(W) model, so hope to test that one out. Looking forward to seeing the next videos in this GCC series.
Very interesting. The UI looks very responsibe and intuitive. I'm not yet sold on adding PBX functionality to a Firewall given the security risk but for the price it should be really attractive for SMBs
@@rcortesg it is snappy. I think for SMB converged infrastructure is OK.
Thanks for another great video, Willie. Also, somehow my notifications were turned off for your channel, something I did not do myself, which is why I've been missing videos.
Thanks for this awesome video. I was completely unaware of this vendor (he says, having invested quite a bit in Unifi switches and APs).
My current setup is an OPNSense box with downstream Unifi self-hosted controller and AP, and a mix of Unifi and QNAP switches.
This is a home/home office setup with a 1 Gbps fiber WAN connection and internal VLANs, with a 10 Gbps LAN segment.
Are there use cases where the GCC product is the preferred option?
Can you get a shell into the system?
What version of Linux or BSD is running under the hood?
Are there rack ears included, or is there a rack mountable version?
This device looks great, and the peice is lower than what i paid for my OPNSense box i got a year ago.
I see some references to "dynamic routing" in the documentation but no mention of OSPF or BGP support. It would be a major miss on Grandstream's part if this was left out.
Where at in the documentation?
I had the 7003 and loved it but throughput tanked when acceleration was enabled for web filter. 1gb symmetrical would slow down to 325mb.
thanks for the intro video. not sure why, but my distributor still does not have them in stock. I may have to do what you did and buy it retail. great intro, looking for to more!
a non biased review i hope, would you say this equals to fortinet's firewalls?
I'd consider replacing my udm pro if the ids/ips throughput was closer to line rate. It's a really interesting device for prosumer as well.
@@BlueFalc0n Small businesses have started snapping these up. Most SMBs don't flex their Internet speed like home users or home lab folks.
@WillieHowe I can see that. I just like having that capacity for future proofing myself.
The switches really blew me away for the price. Have you done any heavy routing tests? Any quirks?
Nice ! Colab coming soon !!
Would be EXTREMELY curious to know how the GCC series would stack up against the Fortigates or Sophos XGS
Thank you Willie! Very nice. One question: Are you moving away from Ubiquity for good and why?
Thanks again and keep up the good work!
@@gyorgy-belaandras6962 We won't move away from them for all installs. It's good to have a healthy mix of vendors to meet all needs.
Redundant 10-57 v power inputs like MikroTik ? Exposure to grid sticks and wires will stress equipment to failure. The Grid is #1 target in conflict.
Compared to pfsense?
pfsense will be less feature than this, especially the firewall security engine updated fron grandstream's server and AI recognization feature
@@tm02019au contraire, i would put this in the USG category. PfSense and OpnSense have more features particularly with extensions.
This is a better class of device.
Great overview Willie. Do you see any integration capability with other provider equipment such as Unifi APs/switches?
@@wyomingcody There are very few pieces of expensive software that allow that. This would be like UniFi but there's way more configuration flexibility with the GS gear.
Does this firewall have a traffic monitor (Built in Wireshark) similar to the traffic monitor on Watchguard firewalls? Allowing you to see traffic in real time and providing filters to help you look for specific things?
It does have some of this functionality -- we'll be diving in deep!
@@WillieHowe looking to replace my sophos home firewall for my home lab definitely interested in seeing more, also how much is the UTM after year one
How expensive is the annual license?
Thanks Willie
@@drreality1 still waiting for the pricing but I'll let everyone know as soon as I know.
Due to the introduction of potentially compromised devices on the lan (such as iot as well as video surveillance), I now consider it a requirement for computers and servers to be grouped and placed on separate subnets/broadcast domains and use inter-lan firewall rules to govern client access to services.
This means having multiple LAN ports that are layer 3 routable instead of just layer 2 switched lan ports, or implement vlan port assignments between the switch ports and the layer 3+ firewall & routing on the backplane.
It also means wireless solutions need to support vlans or operate on an isolated wireless network to protect computing devices.
Unfortunately this means network security appliances which can get expensive to purchase as well as keep subscriptions up to date.
There is definitely a demand in the market that is yet to be fulfilled and this demand is likely to increase as more devices enter the market.
Use Router OS / Mikrotik. Bulletproof networking if you can design
Indeed, the GCC6010 is equipped with routing and VLAN capabilities, which allows for the consolidation and protection of internet ingress data across multiple WAN ports. This includes defense against virus attacks, intrusion prevention system (IPS) threat detection, and the secure blocking of hazardous websites. Internally, the device features numerous LAN ports and SFP optical ports that can be logically divided into separate VLANs, catering to the specific needs of office networks, VoIP telephony, surveillance systems, and IoT devices. By leveraging policy routing, firewall configurations, and traffic shaping mechanisms, administrators can enforce granular access controls and manage bandwidth allocation. Furthermore, the GCC6010 supports Quality of Service (QoS) settings to ensure that SIP-based voice communications and video conferencing sessions receive preferential treatment on the network, guaranteeing smooth and reliable service delivery.
SSL inspection?
One site has the GCC6010W listed at $249.
Willie, great presentation like your Synology presentations! Is it SDN? How do the layer 7 rules look? How does it compare to UI?
@@gld1010 All will be revealed!
@@WillieHowe Am I getting ahead of the program? ... lol
Why do you not like universal plug and play?
I prefer to have control of my firewall.
Wish they had a 10GB SFP+ version
@@marco114 keep your eyes peeled
How does this compare to the GWN7000 series?
@@timd6324 it's a totally different class of device. GCC has multiple modules that do more than just the firewall and routing.
@@WillieHowe Looking at the difference between this and a GWN7003. In projects that don't require UC or WiFi, do you feel there is benefit in going for GCC over GWN from a Firewall point of view?
@@Jacob-ko2ht depends on your security requirements
What CPU is in this thing?
I still prefer my Firewalla for the ease of use and features it comes with plus no recurring licensing fee.
Comparing apples to oranges there
Hey Willie will this allow you to connect your tailscale account to it
And also can I use my nord vpn on there also
I am just curious
@@Nosjamesmenzer Great questions -- we will try it out!
@@WillieHowe alright thanks
Can this block p2p?
@@YuvindraOjha-fq6wu yes
That's a hard pass from me. If their phones and ATAs are anything to go by I'll stick with my off-lease dell sff running pfsense.
As with everything in IT - YMMV