IP Communications

Enterasys Networks has announced today a new Distributed Intrusion (News - Alert) Prevention System (IPS) to automatically sense and respond to threats in real-time across multi-vendor wired and wireless networks.

While standard procedures often create restriction of IPS visibility and control to a subset of network connections, with Enterasys’ (News - Alert) solution, IPS proactive protections are extended to every LAN edge access port and all WLAN 802.11 frequencies to detect threats, mitigate or stop an attack and automatically contain and/or remove the source of the threat from the network.

 

The solution effectively integrates with switches and intrusion detection/prevention appliances from multiple vendors to leverage existing infrastructure investments while automating responses to security threats.

 

“Network security needs to be built-in everywhere, rather than bolted-on somewhere,” said Mike Fabiaschi, Enterasys President and CEO. “Enterasys advanced security software delivers fully distributed protection from both internal and external threats without having to deploy appliances on every wire.”

 

“Rather than just telling you that a threat exists – we make it easy to immediately remove the threat from any multi-vendor network without impacting performance,” Fabiaschi added.

By deploying Enterasys Distributed IPS, IT operations are able to avoid the performance bottle-neck and scalability limitations of traditional in-line IPS applications.

While traditional IPS solutions cannot provide critical threat identification, location, containment and removal capabilities, the Enterasys Distributed IPS solution removes the source of the attack’s access to the network and reconfigures network devices from Cisco (News - Alert), Enterasys, Foundry, HP ProCurve, Juniper, Nortel, and other vendors to prevent future access. 

Automatic responses can range from throttling inappropriate traffic and/or blocking individual user/device access, assigning packets to a quarantine VLAN or turning off the port, depending on the capabilities of existing switches.

“Self-securing networks are one step closer to reality with this cost-effective approach,” said Charlotte Dunlap, Current Analysis (News - Alert) Senior Analyst, Enterprise Security.

 

“As network security evolves from access control to content control, enterprises need a way to dynamically protect the network infrastructure from accidental and malicious attacks – without deploying expensive security appliances everywhere.”

This solution from Enterasys is designed to identify a vulnerability threat or security event; mitigate an attack by dropping the attack packet(s); reporting the details of the attack; locating the exact physical source of the attack; and containing the threat by removing the source from the network.

Enterasys Distributed IPS can also play a key role in post-connect Network Access Control for continuous threat analysis, network behavioral analysis and deep packet inspection to assist in data leakage protection.

Threats to network security are multiplying faster than the solutions designed to thwart malicious attacks. While this can seem daunting to any IT manager, the reality is that proactive solutions can protect the network environment, as long as it is continuous.

 

With the Enterasys Distribute IPS solution, these IT managers are provided a scalable and flexible solution that takes traditional protections into the next generation. As a result, networks can be effectively monitored and protected to enable the organization to get the most value out of their IT investments.

 

 

 

 Don’t forget to check out TMCnet’s White Paper Library, which provides a selection of in-depth information on relevant topics affecting the IP Communications industry. The library offers white papers, case studies and other documents which are free to registered users. Today’s featured white paper is Level the Playing Field With Business VoIP, brought to you by Speakeasy