RSS Alerts

Share

More services

Related Links

Related Stories

  • Network IPS far from adequate, says ICSA Labs
    Seven in every 10 network IPS products never attain security certification because they are inadequate, according to a damning report from ICSA Labs, a division of Verizon business.
  • Sourcefire links up with Qualys with Qualysguard collaboration/support
    Sourcefire, the company that created the Snort open source firewall software, has announced it is collaborating with Qualys to make its software fully integrated with the QualysGuard platform.
  • An injection of new ideas
    Securing IT means coping with Donald Rumsfeld’s ‘known unknowns’ – expected attacks whose nature is a surprise. Concepts from medicine, game theory and crowd sourcing may help, finds Danny Bradbury
  • Bigger is not better when it comes to DDoS attacks
    Small-scale targeted distributed denial of service (DDoS) attacks can cause more damage to an organization that large-scale bandwidth-gobbling attacks, concludes a recent report by application security provider Radware.
  • Year of the Hack
    Commonly referred to as the year of the hack, it is no secret what 2011 has become famous for in the information security industry. This year’s headlines, reports Fred Donovan, have been made up of data breaches, hacks, APT attacks and mergers and acquisitions

Top 5 Stories

News

Sourcefire launches faster IPS configuration

20 January 2010

Sourcefire has increased the speed of its intrusion prevention system, or IPS, announcing support for a 20 Gbit/sec clustered model.

The latest version of the Sourcefire IPS achieves the speed increase by linking together two new 10 Gbit/sec sensors. The IPS cluster uses load-balancing technology inside each of the 3D9900 sensors, Sourcefire explained.

Customers can choose between four 10 Gbit/sec fiber ports, or 12 1 Gibit/sec copper ones. It can be deployed using in-line mode, which enables it to actively control traffic in the same way as a firewall, or in passive mode, which can have less of an effect on the network, but which relinquishes some control over the traffic, effectively turning it into an intrusion detection device.

Creating an IPS with a greater throughput may make it more appropriate as an in-line device rather than a passive one for many customers. Customers can also choose to operate the cluster in a redundant mode, which will give them 10 Gb per second of throughput.

The 3D9900 can run the intrusion prevention system simultaneously with Sourcefire Real-Time Network Awareness, and Real-Time User Awareness. RNA is a network intelligence system that conducts network flow analysis and vulnerability assessment using passive scanning. RUA lets customers tie user identity information to network events, enabling administrators to identify the source of particular threats.

Faster network security equipment is becoming increasingly important as the speed of ethernet networks increases. The fastest ethernet standard ratified to date is 10 Gbit/sec ethernet, but the IEEE is working on 100 Gbit/sec ethernet, and vendors are already releasing equipment based on this technology.

The Sourcefire 3D9900 Sensor is available immediately. Support for the 3D9900-based 20 Gbit/sec cluster is anticipated for the first half of this year.

This article is featured in:
Internet and Network Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012