I also agree with the single use for a firewall, except in small offices where you are using a firewall meant to be used as a DSL or Cable router.
The problem is that just because you can do something doesn't mean you should. You should look at the needs and only use what you need.
For example, there is an article the current Infoworld (11/3/03) comparing three firewalls: the WatchGuard Vclass V80 ($9,990), Fortinet FortiGate-500 ($9,995) and the SonicWall Pro 330 ($2,795). The SonicWall performed well against the MUCH more expensive firewalls.
The Fortinet firewall was rated to handle 2000 vpn tunnels, but they could only get 1023 to work. The SonicWall could handle up to 843, but then the tunnels started breaking down. I don't know what the advertised number of tunnels are, but in the case of the Fortinet, obviously, just because it says it can handle that - doesn't mean it can or handle it very well. Also, if you take the VPN tunnels to its limits, how well is it handling its primary responsibilities as a Firewall.
Sahirh: Timeline comes to our theatres on Nov 26th. The trailers look great. I love time movies, so am really looking forward to this one. As you said, the book was great.
Thanks,
Tom
