- Nokia's new N97 vs. the iPhone
- Talk-powered cell phones?
- FBI: Copper thieves jeopardize U.S. infrastructure
- 10 Microsoft research projects
- Smartphone smackdown: Storm vs. iPhone
Playing off of Cisco CEO John Chambers’ security-themed keynote address at Interop Tuesday, Cisco this week introduced a security appliance that rolls multiple services into a single box, with the aim of making it easier for businesses to secure network borders.
Unveiled at the Interop 2005 conference in Las Vegas, the Adaptive Security Appliance (ASA) 5500 is designed to collapse VPN, firewall, intrusion prevention system (IPS), and other services into a single box. The device could help users deploy less security gear and make it easier to manage the detection and prevention of blocking worms, viruses, spyware and other unwanted network traffic.
The ASA 5500 series combines the functions of PIX firewalls, Cisco VPN 3000 Concentrators, Cisco IPS 4200 series appliances, and anti-virus and network quarantine technology based on Cisco’s Network Admission Control (NAC) multi-vendor effort.
The devices come in three models: the ASA 5510, 5520 and 5540, which support 300M bit/sec, 450M bit/sec and 650M bit/sec of security processing bandwidth, respectively. Cisco claims each device can move traffic at its maximum throughput rate with all services turned on — stateful firewall traffic inspection, SSL VPN and IPSec encryption and tunnel termination, as well as IPS functions.
The device runs a management application that allows users to administer multiple network security services from a single interface. Policies can more easily be pushed across VPN, firewall and IPS services running on the box. Users can also use this tool to configure anti-spyware, anti-virus and denial-of-service attack detection services, as well as singling out and controlling specific applications (such as Kazaa or other peer-to-peer applications).
The boxes are meant to sit at the edge of a corporate network, securing incoming and outgoing packet flows, as well as remote access VPN traffic. The devices could also reside in a corporate data center, or on segments of a LAN, allowing administrators to restrict access to certain network assets, or to monitor internal traffic for malicious software.
Cisco said it plans to integrate the ASA technology into its Catalyst 6500 switch platform, as well as a service blade in its access routers. But the company did not give a road map for when this would happen.
Rss FeedRss Feed
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 The Leader in Network Knowledge© 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comment