Ipolicy Networks' ipEnforcer Enforces Security Policies
Posted by
Hugh Smith and Jesse Englert and Michael Watts
April 09, 2004
We tested an 3400 at the Network Performance Research Lab at Cal Poly-San Luis Obispo. The device we received, a 2U, rack-mountable unit with three Gigabit Ethernet interfaces, comes with a separate 10/100-Mbps link for the management connection. We also were sent a 1U rack-mountable USM (Unified System Manager) Express 3000. This essential management device is sold separately and can be used to configure up to 1,000 ipEnforcers. The idea is to distribute your 3400s around your enterprise and use one USM to manage them all. The connection between the USM and the 3400 is secured using SSL.
We ran a wizard on the USM 3000 to configure basic USM and 3400 device information, including management IPs, interface IPs and NAT (Network Address Translation) features. We set up the 3400 as a gateway, and used two Gigabit Ethernet links for our test network, which comprised a security domain for LAN traffic and a DMZ of five Web servers, one e-mail server and one DNS server. We used the third Gigabit Ethernet link for Internet access.
Running Traffic
|
Good
Bad
Related ReadingMore Insights
Vendor Comparisons
Network Computing’s Vendor Comparisons provide extensive details on products and services, including downloadable feature matrices. Our categories include:
Research and ReportsFEATURED RESEARCHState of Server TechnologyFEATURED STRATEGYThe Long-Distance LANRegister for Network Computing ProFind hundreds of reports featuring research from your peers, and best practices from top IT pros. Sign Up VideoMost PopularUpcoming EventsFeatured Whitepapers
 Featured ReportsBlogRollTechWeb Careers
|
