Nevis adds cloaking feature

Network Access Control This newsletter is sponsored by Gateway Virtual Server Management: Weighing the options Learn about an array of exciting new time-saving tools that make it possible to manage virtual servers in a similar way as physical servers by watching the latest Network World Editorial Perspectives Webcast. Click here to watch! Network World's Network Access Control Newsletter, 08/07/07 Nevis adds cloaking feature By Tim Greene Nevis Networks has a new feature to block devices from sending or receiving packets from other devices they are barred from by NAC policy. Called cloaking, the new feature makes it impossible for devices and their users to access resources they are not authorized to reach, even if the devices and the resources are on the same virtual LAN. If a device launched an attack at another resource on a VLAN, it would be picked off by the Nevis gear. New software for both the company’s LANenforcer appliance and Secure Access Switch enable the devices to drop packets that fall outside the policy definitions of individual users. Network World Security Buyers Guide Find the right security products for your enterprise - fast. From anti-spam to wireless LAN security, our Buyers Guides have detailed information on hundreds of products in more than 20 categories. With the side-by-side comparison tool you can evaluate product features to make the best decision for your enterprise. Click here to go to the Security Buyers Guide now. Before, parameters that Nevis gear could use to restrict access to resources included source/destination addresses, IP and MAC addresses and protocols. The new software adds application layer intelligence with an application firewall built in to the LANenforcer software. Cloaking can be linked to protocols as well. So all the VoIP phones on a network can be restricted to sending and receiving only those protocols used for VoIP. If a VoIP phone tried to download an FTP file, for example, the request would be blocked. This finer-grained filtering enables a much narrower definition of what resources are and are not available to users and user groups. This gives Nevis gear the ability to recognize applications and map policies to them. Policies are set within the Nevis gear and imposed on groups or individuals as defined by existing directory systems. The software upgrade that adds the application firewall to Nevis gear is available now. Editor's Note: Starting Aug. 14, this newsletter will be renamed "Security: Network Access Control" to better reflect the focus of the newsletter. We thank you for reading Network World newsletters!   What do you think? Post a comment on this newsletter

TODAY'S MOST-READ STORIES: 1.Undercover TV producer booted from DefCon 2. Do Not Call Registry gets wake-up call 3. NAC alternatives hit the mark 4. Newspaper outs ‘Fake Steve Jobs’ 5. Cisco founder unveils the Next Big Thing? 6. Tech-support poser gets sensitive info from IRS 7. Cisco founder brings optics to the router guys 8. The case of the great hot-site swap 9. IBM saves $250M with Linux-run mainframes 10. Researchers flag VoIP exploits at Black Hat MOST E-MAILED STORY: Hogwarts IT director quits

Contact the author: Tim Greene is a senior editor at Network World, covering network access control, virtual private networking gear, remote access, WAN acceleration and aspects of VoIP technology. You can reach him at tgreene@nww.com. This newsletter is sponsored by Gateway Virtual Server Management: Weighing the options Learn about an array of exciting new time-saving tools that make it possible to manage virtual servers in a similar way as physical servers by watching the latest Network World Editorial Perspectives Webcast. Click here to watch! ARCHIVE Archive of the Network Access Control Newsletter. BONUS FEATURE IT PRODUCT RESEARCH AT YOUR FINGERTIPS Get detailed information on thousands of products, conduct side-by-side comparisons and read product test and review results with Network World’s IT Buyer’s Guides. Find the best solution faster than ever with over 100 distinct categories across the security, storage, management, wireless, infrastructure and convergence markets. Click here for details. PRINT SUBSCRIPTIONS AVAILABLE You've got the technology snapshot of your choice delivered to your inbox each day. Extend your knowledge with a print subscription to the Network World newsweekly, Apply here today. International subscribers, click here. SUBSCRIPTION SERVICES To subscribe or unsubscribe to any Network World newsletter, change your e-mail address or contact us, click here. This message was sent to: security.world@gmail.com. Please use this address when modifying your subscription. Advertising information: Write to Associate Publisher Online Susan Cardoza Network World, Inc., 118 Turnpike Road, Southborough, MA 01772 Copyright Network World, Inc., 2007