• United States
Executive Editor

Cyberguard adds intrusion detection, Web caching to gear

Jan 20, 20042 mins
Intrusion Detection SoftwareNetwork Security

* Cyberguard adds intrusion detection and Web proxy features to SME575

VPN equipment maker Cyberguard has added intrusion detection to its security appliance designed for midsized business sites.

The SME575 appliance, which already supports IPSec VPNs and a firewall, also boasts a Web proxy to stand between the Internet and hosts.

The intrusion detection is based on the widely used open source software known as Snort, which uses signature libraries to scan for attacks that might get past network-layer firewalls. While this enables network administrators to discover when attacks occurred, it does not automatically block perceived intrusions.

In order to block intrusions, users have to sort the intrusion logs to identify threats.

The Web cache proxy can cache frequently requested Web images and DNS requests, thereby improving Web response times. The feature also proxies Secure Sockets Layer sessions, offering a certain amount of security by blocking servers from direct contact with the Internet.

Also new is software that allows configuring the device with two WAN ports or turning one into a DMZ port where devices can be isolated from the rest of the network.

While these new functionalities don’t do much for the appliance’s VPN features, their addition does speak to a trend of vendors adding more and more security features to VPN gear. Rather than being VPN gateways, they are becoming security gateways.

The device still costs $949, and customers that already own one can upgrade them with free downloads.