Need a cisco ASA 5505 firewall appliance with certain abilities
I'm looking for an additional cisco ASA 5505 ASA5505-UL-BUN-K9 8 Port firewall appliance to go between my current router/firewall and my server. The specific purpose of this firewall appliance is to block the IP addresses of specific countries where hacking attempts and spambots frequently originate and legitimate connections to the server are rare. I know they originate from ALL countries, but some are much worse than others.
I don't really need advice on why this is a good (or bad) idea, it's what I want to do regardless. I'm just looking for recommendations for a hardware appliance that will do what I need, the way I want it done.
The ONLY appliances I am aware of at this time that meet my requirements are Watchguard Fireboxes such as the x500, x700, etc.
They would work, but are large, somewhat noisy, and consume a good bit of power. The interface is good, however.
Here are some of the desired properties I am looking for.
1). Interface that allows me to conveniently add large numbers of IP address blocks in CIDR format or as Host ranges.
2). Low power consumption (ie no hard drive needed)
3). User interface that allows me to see live connections as they are allowed or denied similar to what Watchguard Fireboxes such as the x700 can do.
Here is the visual interface for the Watchguard Firebox. I like this interface. I may end up using another Firebox if there are no other good / better alternatives.