|
contents | technologies | |||||||
| Network-Wide Security Surveillance Foundry Networks, Inc., a performance and total solutions leader for end-to-end switching, routing, and web traffic management solutions, and InMon Corp, the leading supplier of traffic monitoring solutions for high-speed switched and routed networks, today announced their partnership through Foundry's Security Alliance Program to provide network-wide security surveillance solutions based on sFlow, an industry standard technology for monitoring high-speed switched networks. The continued onslaught of network security attacks demonstrate the limitations of relying entirely on firewalls and Intrusion Detection Systems (IDS) to secure access to enterprise networks. A single laptop, wireless access point or connection to a business partner can introduce a rapidly spreading worm behind the firewall, severely impacting business activities. According to the SANS Institute, more than 600 new internet security vulnerabilities were discovered during the first quarter of 2005 alone. In the past, lack of visibility into internal network traffic has made it notoriously difficult to detect and isolate infected hosts. Today, the industry standard sFlow technology embedded in Foundry Networks' switch and router fabric and InMon Traffic Server provide unprecedented visibility into the Layer 2 through 7 traffic patterns to rapidly identify and locate hosts which have been compromised or are violating security policies. The InMon Traffic Server and sFlow solution is uniquely positioned to complement traditional IDS and firewall solutions, protecting the entire network from the inside out. The lightweight sFlow capability embedded within every switch port exports sampled packet headers to the central Traffic Server. The Traffic Server includes a highly scalable traffic correlation engine that allows it to monitor tens of thousands of switch or router ports simultaneously, providing network-wide surveillance. Traffic Server performs real-time analysis of traffic data, raising alerts on signature matches or traffic profiles that indicate security threats and locating the offending hosts so they can be removed from the network. "For some time now, InMon has been working successfully with Foundry and our customers to shine a security spotlight on areas of the network that have been difficult for traditional systems to illuminate, " said Gary Hemminger, director of product marketing for Foundry Networks. "Our ability to provide complete and detailed packet information through Foundry's embedded sFlow technology, together with InMon's reporting and analytics capabilities, gives our customers a valuable tool to locate, surround and eliminate security problems." "This solution completely revolutionizes the way that the all too frequent worm outbreaks are handled, " says Peter Phaal, InMon Corp. President. "Our customers can now receive instant alerts on compromises to their internal security anywhere on the network. The alerts provide sufficient detail to allow them to pinpoint the problem and take rapid controlling action, without the need to deploy sniffers or probes." The Foundry Security Alliance Program delivers enhanced security solutions around Foundry's core Layer 2/3, Layer 4/7 switches, security, and traffic management solutions. The program builds a range of security solutions for customers, focusing specifically on Network Admission Control (NAC), intrusion detection and prevention, wireless security, authentication, and monitoring and reporting. Current members include, Microsoft, Symantec, Check Point Software Technologies Ltd., Fortress Technologies, and Lancope. write your comments about the article :: © 2006 Networking News :: home page |