I have a lot of Sonicwall units out there. It really depends on what the client needs. If it's a small branch office and you don't expect to ever have to have to deal with VLAN *tags* then I usually push the Sonicwall TZ100 or TZ210 TotalSecure units. They include Premium Content filtering, Gateway AV, IPS, and rudimentary anti-spam all in one unit for a decent price.
If you need full "industry standard" VLAN support then it's minimum NSA240.
I've also dealt with the TippingPoint units and they're really nice. We deploy them in scenarios where PIM-DM multicast over VPN tunnels is necessary (certain VoIP solutions like the 3Com NBX require this)
I really do like the Sonicwall units themselves. Easy to use and configure and seem to work well, but the company and their tactics are shady.
Riley
I'm looking to buy a unit for my house, i had the tz100, hated it, never worked properly. So i ditched it bought a Astaro 220. Im going back to the sonicwalls because i work with a company that sells them like hot cakes, i would like a unit at home that can protect all the computers.
I also wish to setup 2-3 vlans, i work from home so i need a vpn so i can connect to my servers behind the unit. I also have a home automation at home that i don't want access to my servers and the wireless in the house i don't want access to my servers EXCEPT my laptop, the wifes laptop and other machines i want isolated from my servers & nas units.
Jason