Network World
Wednesday, November 25, 2009
DNSstuff.com
Get information about your IP
IP Information
50+ On-demand DNS and network tools
  |  

Fave raves

Nortel's Enterprise Policy Manager

IN THIS ARTICLE

CIO, Priceline: Primavera
IT director, University of Connecticut: Enterprise Policy Manager
IT director, Lucasfilm Entertainment: Remedy Help Desk
IT director, Costello & Sons Insurance: Mimosa NearPoint Server
IT director, Pentair: WebInspect

Michael Vertefeuille
• Title: IT director, University of Connecticut School of Business, in Storrs, Conn.
• Years in networking: 15

We have 14 classrooms in our business school equipped with live data jacks. Because the students usually have laptops in class, the faculty has a hard time capturing their attention. Even though the laptop is an incredible tool for learning, it's also a distraction. Faculty wanted a way to control or shut down what students do on their laptops.

To achieve this, we use Nortel's Enterprise Policy Manager (EPM) with a custom piece of code I wrote to manage the networks in the classrooms from the instructor station.

If I'm teaching a class, for instance, I can use the instructor's workstation in the room to choose what traffic I want to block and those packets are filtered from the edge switches within 5 seconds. The beauty is that each instructor can use the workstations differently. Instructors giving exams online over the student laptops during class can make sure their students have access only to the Web server that holds the university's testing tool. Using the workstation, which is policy-driven, they can guarantee that students can't go to the Web or chat or do e-mail during the exam. The only packets allowed are those to and from the testing server.

Another benefit is that by using a product like this . . . we can prevent viruses and hacking out on the edge. Traditional firewall architecture forces you to send everything through a central point. For us, when we have an outbreak, we want to stop it at the user port so that we don't bring down the core of the network. We can see what filters are getting hit and even if a particular user is getting hit. Traditionally, it would have taken us days to push virus updates and policies out to the edge, but EPM lets us do it in 15 to 20 minutes. Everything is managed from a single server, and there are a great number of switches it can handle remotely. The IT staff is able to write policies, as well as offer teacher-level, in-room access.

React: Give us your thoughts on the issues here.
Start a public discussion with other Network World users on this article (scroll up to send this article to a colleague).
Log In | Register for an account (Why you should)

Note: Register to have your user name appear; otherwise your comment will show up as "Anonymous."

*Anonymous comments will only appear once they are approved by the moderator.

Copyright 2008 Network World Inc.

Related links

Why Nortel's tunnel-in-a-tunnel approach is worth investigating
05/17/05

Nortel ships Converged Office
02/14/06

Nortel unveils its network access control box
02/15/06


Network World Newsletter

Sign up for some of our Network/ Systems Management newsletters.

Network Optimization
Network Systems Management Alert
Virtualization Alert
IT Careers and Training  Alert
Network World Daily
 All newsletters  

E-mail Address:


Partner Content

NetScout and analyst Jim Metzler have teamed to deliver a series of IT Briefs on Network and Application Performance Management leveraging research from NetScout's nGenius & Sniffer users.

www.netscout.com

Metzler on Service Delivery Management

Delivering IT business value by evolving our thinking from managing application performance to focusing on services.

Learn More

2009 Handbook of Application Delivery

Successful IT organizations must know how to make the right application delivery decisions in these tough economic times.

Download the Handbook

Metzler on the Modern IP Network

Discusses the growing emphasis on network management and the need to implement a holistic view of the end-to-end experience of the user.

Read the Brief