Skip Links

Network World

  • Social Web 
  • Email 
  • Close

NetClarity reveals mystery method of blocking suspicious traffic

NetClarity now has a patent on its method of blocking suspicous traffic
Security: Network Access Control Alert By Tim Greene , Network World , 04/01/2008
Tim Greene
  • Share/Email
  • Tweet This
  • Comment
  • Print

NetClarity sells NAC gear that until now blocked suspicious traffic in a mysterious way that somehow involved switches in the network, but all the company would say about it was: Patent pending.

Now the patent has been issued and the company is talking about how its gear talks to switches, via common line SSH or TELNET instructions to the switch.

This means that customers can enforce NAC policies using whatever switches they have in their networks. This is one of the issues businesses have when considering NAC. They don’t want to do the proverbial fork-lift upgrade in order to gain the benefits of NAC.

The company claims that this means installing its equipment can be a tenth or less the cost of some competitive NAC options.

The downside is there are a lot of switch models out there each with its own interfaces, so that depending on the switch, NetClarity might or might not have it baked into its NAC gear.

The company acknowledges this potential drawback and says it plans a plug-in builder for customers to write directions for their own particular switches. If customer-written plug-ins pass quality testing by NetClarity, they may then be submitted to a plug-in library free to other customers. Over time, this could eliminate the need for the plug-in writer.

The company also has plans to expand the enforcement options available when its equipment detects traffic that violates policies. Rather than just either block it or allow it, the equipment will be able to quarantine suspicious traffic as well.

Tim Greene is senior editor at Network World.

  • Share/Email
  • Tweet This
  • Comment
  • Print
Comments (9)
Login
Forgot your account info?

Nothing in your patent are novel so farBy Mike Fratto on April 25, 2008, 8:19 amGary, I will go on record stating that I have read through patent number 7,346,922 and I didn't see anything novel in there. If I *really* wanted to spend time in...

Reply | Read entire comment

Will the "Anonymous" commentors in glass walls please reveal?By Gary S. Miliefsky on April 17, 2008, 6:47 pmJust as a light bulb was invented, patented and protected by Thomas Alva Edison, so to is a novel approach to clientless NAC by NetClarity. And we all do pay...

Reply | Read entire comment

Yes, this is nothing new.By Matt Cobb on April 4, 2008, 6:44 pmYes, this is nothing new. Lockdown was doing it 3 years ago - login to the switch/router over telnet/ssh and set a vlan on the port or an acl on a mac/ip. 6 years...

Reply | Read entire comment

Lame, Lame, Lame ... Netclarity spins this as something revolutiBy Anonymous on April 3, 2008, 3:37 pmLame, Lame, Lame ... Netclarity spins this as something revolutionary, when it's not anything special. I can do everything they do with a linux box and a couple...

Reply | Read entire comment

Stone hand axe to automatic riflesBy Anonymous on April 1, 2008, 5:59 pmTim- come on now, comparing blocking traffic the way it is described here to actual quarantining to a specific VLAN or similar type of technology is like comparing...

Reply | Read entire comment

View all comments

Add comment
Anonymous comments subject to approval. Register here for member benefits.
Have a NetworkWorld account? Log in here. Register now for a free account.

Videos

rssRss Feed