Fortinet opens gate to new security appliance

Network security provider Fortinet Inc has unveiled its latest security appliance, called the FortiGate-3140B. It is aimed at protecting enterprises and datacentres against online threats and malware.

"The FortiGate-3140B has features like a firewall, antivirus, antispyware, virtual private network (VPN) and anintrusion prevention system (IPS), said George Chang, regional director for South-East Asia and Hong Kong at Fortinet (S) Pte Ltd.

"All these can protect businesses against current and emerging threats, especially in a cloud-computing environment.

"VPN, for example, provides secure communications between many networks and hosts using Secure Sockets Layer (SSL) and Internet Protocol Security (IPsec) technologies. This is to ensure a customer's data, which may reside in a cloud, is always protected."


The appliance, which is a two-rack unit, offers up to 10 10-Gigabit Ethernet ports. It provides up to 58Gbps (gigabits per second) of firewall performance, 10Gbps of IPsec performance, and up to 22Gbps of VPN performance.

Chang said it runs on FortiASIC chips, having both a content and network processor. The content processor helps reduce bottlenecks in antivirus, encryption/decryption in VPN, and authentication processing.

The network processor, meanwhile, improves network throughput for traffic with small packets, such as VoIP (Voice-over-Internet Protocol) and latency-sensitive traffic, such as streaming multimedia.

Fortinet's FortiGate-3140B operates on the FortiOS 4.03 MR3 operating system (OS). This new OS offers features that include wireless controller extensions which support the automatic provisioning of wireless access points, as well as the detection and suppression of rogue access points.

The OS also enables a feature called active profiling, which helps discover and mitigate threats by establishing a behavioral baseline for a computer network. It then monitors the network for deviations and alerts the IT administrators if any are encountered.

The FortiGate-3140B retails for between US$60,000 and US$90,000 depending on specifications.

Fortinet opens gate to new security appliance

Network security provider Fortinet Inc has unveiled its latest security appliance, called the FortiGate-3140B. It is aimed at protecting enterprises and datacentres against online threats and malware.

"The FortiGate-3140B has features like a firewall, antivirus, antispyware, virtual private network (VPN) and anintrusion prevention system (IPS), said George Chang, regional director for South-East Asia and Hong Kong at Fortinet (S) Pte Ltd.

"All these can protect businesses against current and emerging threats, especially in a cloud-computing environment.

"VPN, for example, provides secure communications between many networks and hosts using Secure Sockets Layer (SSL) and Internet Protocol Security (IPsec) technologies. This is to ensure a customer's data, which may reside in a cloud, is always protected."


The appliance, which is a two-rack unit, offers up to 10 10-Gigabit Ethernet ports. It provides up to 58Gbps (gigabits per second) of firewall performance, 10Gbps of IPsec performance, and up to 22Gbps of VPN performance.

Chang said it runs on FortiASIC chips, having both a content and network processor. The content processor helps reduce bottlenecks in antivirus, encryption/decryption in VPN, and authentication processing.

The network processor, meanwhile, improves network throughput for traffic with small packets, such as VoIP (Voice-over-Internet Protocol) and latency-sensitive traffic, such as streaming multimedia.

Fortinet's FortiGate-3140B operates on the FortiOS 4.03 MR3 operating system (OS). This new OS offers features that include wireless controller extensions which support the automatic provisioning of wireless access points, as well as the detection and suppression of rogue access points.

The OS also enables a feature called active profiling, which helps discover and mitigate threats by establishing a behavioral baseline for a computer network. It then monitors the network for deviations and alerts the IT administrators if any are encountered.

The FortiGate-3140B retails for between US$60,000 and US$90,000 depending on specifications.

Fortinet opens gate to new security appliance

Network security provider Fortinet Inc has unveiled its latest security appliance, called the FortiGate-3140B. It is aimed at protecting enterprises and datacentres against online threats and malware.

"The FortiGate-3140B has features like a firewall, antivirus, antispyware, virtual private network (VPN) and anintrusion prevention system (IPS), said George Chang, regional director for South-East Asia and Hong Kong at Fortinet (S) Pte Ltd.

"All these can protect businesses against current and emerging threats, especially in a cloud-computing environment.

"VPN, for example, provides secure communications between many networks and hosts using Secure Sockets Layer (SSL) and Internet Protocol Security (IPsec) technologies. This is to ensure a customer's data, which may reside in a cloud, is always protected."


The appliance, which is a two-rack unit, offers up to 10 10-Gigabit Ethernet ports. It provides up to 58Gbps (gigabits per second) of firewall performance, 10Gbps of IPsec performance, and up to 22Gbps of VPN performance.

Chang said it runs on FortiASIC chips, having both a content and network processor. The content processor helps reduce bottlenecks in antivirus, encryption/decryption in VPN, and authentication processing.

The network processor, meanwhile, improves network throughput for traffic with small packets, such as VoIP (Voice-over-Internet Protocol) and latency-sensitive traffic, such as streaming multimedia.

Fortinet's FortiGate-3140B operates on the FortiOS 4.03 MR3 operating system (OS). This new OS offers features that include wireless controller extensions which support the automatic provisioning of wireless access points, as well as the detection and suppression of rogue access points.

The OS also enables a feature called active profiling, which helps discover and mitigate threats by establishing a behavioral baseline for a computer network. It then monitors the network for deviations and alerts the IT administrators if any are encountered.

The FortiGate-3140B retails for between US$60,000 and US$90,000 depending on specifications.

Aruba secures endpoints with NAC interop and product.

Frank Bulk wrote

By Frank Bulk

Aruba Networks most recent announcement regarding NAC interoperability verification and a product announcement repeat a common anthem of this vendor's emphasis on security.

The three major NAC groups are Cisco, Microsoft NAP, and the Trusted Computing Group (TCG); the first two are clearly vendor driven, while the last is standards-based and enjoys broader industry support. Unable to drive a standard of its own, Aruba has not hitched itself to any single group, but has verified NAC interoperability with three technology industry heavyweights: Cisco, Juniper, and Microsoft. Working with network equipment market share leader Cisco is almost a de facto requirement, and Microsoft is Aruba's largest customer, if not most significant. This shouldn't be considered Aruba's first fore into NAC: they have partnerships with Bradford, FireEye, Fortinet, InfoExpress, Snort, and as well as Symantec (via Sygate, though this is end-of-sale).

In addition to their partnerships, Aruba has also announced a new appliance for "targeted industries". To date Aruba has built most of the products it sells, preferring to partner where necessary. Ash Chowdappa, director of mobility management system, stated in a briefing, that Aruba will wait until the NAC market shakes out before considering to develop something internally. This time around Aruba OEMed their Aruba Endpoint Compliance System (ECS) appliance from a vendor that has significant success in the higher education market.

According to Chowdappa, higher education is Aruba's number one vertical, and they expect ECS to gain traction in healthcare and hospitality, markets where there are significant numbers of guest users. Aruba makes the point that many NAC vendors are targeted toward managed devices such as desktops and laptops, while ECS is able to deal with unmanaged and transient devices such as Vo-Fi phones, and the occasional Sony Wii, that may not be able to run an agent. For devices in this latter group Aruba's ECS can work in tandem with their mobility controller to implement more restrictive traffic policies leveraging Aruba's stateful firewall. And this appliance isn't restricted to just wireless products, as the appliance can take trunked wired traffic, such as guest VLANs, and enforce policy on those, too.

Aruba is making the right moves in offering its customers multiple NAC options resulting in great stickiness for their core wireless LAN products. One of the challenges that Aruba faces is that organizations may look first to their wired networking equipment vendor for a NAC product, giving Cisco a natural leg up. Aruba appears to have chosen to OEM a mature product that integrates with systems in both mediums, and with eventual implementation of 802.11n, may take a larger and larger portion of IT's mindshare and networking budget.

Aruba secures endpoints with NAC interop and product.

Frank Bulk wrote

By Frank Bulk

Aruba Networks most recent announcement regarding NAC interoperability verification and a product announcement repeat a common anthem of this vendor's emphasis on security.

The three major NAC groups are Cisco, Microsoft NAP, and the Trusted Computing Group (TCG); the first two are clearly vendor driven, while the last is standards-based and enjoys broader industry support. Unable to drive a standard of its own, Aruba has not hitched itself to any single group, but has verified NAC interoperability with three technology industry heavyweights: Cisco, Juniper, and Microsoft. Working with network equipment market share leader Cisco is almost a de facto requirement, and Microsoft is Aruba's largest customer, if not most significant. This shouldn't be considered Aruba's first fore into NAC: they have partnerships with Bradford, FireEye, Fortinet, InfoExpress, Snort, and as well as Symantec (via Sygate, though this is end-of-sale).

In addition to their partnerships, Aruba has also announced a new appliance for "targeted industries". To date Aruba has built most of the products it sells, preferring to partner where necessary. Ash Chowdappa, director of mobility management system, stated in a briefing, that Aruba will wait until the NAC market shakes out before considering to develop something internally. This time around Aruba OEMed their Aruba Endpoint Compliance System (ECS) appliance from a vendor that has significant success in the higher education market.

According to Chowdappa, higher education is Aruba's number one vertical, and they expect ECS to gain traction in healthcare and hospitality, markets where there are significant numbers of guest users. Aruba makes the point that many NAC vendors are targeted toward managed devices such as desktops and laptops, while ECS is able to deal with unmanaged and transient devices such as Vo-Fi phones, and the occasional Sony Wii, that may not be able to run an agent. For devices in this latter group Aruba's ECS can work in tandem with their mobility controller to implement more restrictive traffic policies leveraging Aruba's stateful firewall. And this appliance isn't restricted to just wireless products, as the appliance can take trunked wired traffic, such as guest VLANs, and enforce policy on those, too.

Aruba is making the right moves in offering its customers multiple NAC options resulting in great stickiness for their core wireless LAN products. One of the challenges that Aruba faces is that organizations may look first to their wired networking equipment vendor for a NAC product, giving Cisco a natural leg up. Aruba appears to have chosen to OEM a mature product that integrates with systems in both mediums, and with eventual implementation of 802.11n, may take a larger and larger portion of IT's mindshare and networking budget.

Aruba secures endpoints with NAC interop and product.

Frank Bulk wrote

By Frank Bulk

Aruba Networks most recent announcement regarding NAC interoperability verification and a product announcement repeat a common anthem of this vendor's emphasis on security.

The three major NAC groups are Cisco, Microsoft NAP, and the Trusted Computing Group (TCG); the first two are clearly vendor driven, while the last is standards-based and enjoys broader industry support. Unable to drive a standard of its own, Aruba has not hitched itself to any single group, but has verified NAC interoperability with three technology industry heavyweights: Cisco, Juniper, and Microsoft. Working with network equipment market share leader Cisco is almost a de facto requirement, and Microsoft is Aruba's largest customer, if not most significant. This shouldn't be considered Aruba's first fore into NAC: they have partnerships with Bradford, FireEye, Fortinet, InfoExpress, Snort, and as well as Symantec (via Sygate, though this is end-of-sale).

In addition to their partnerships, Aruba has also announced a new appliance for "targeted industries". To date Aruba has built most of the products it sells, preferring to partner where necessary. Ash Chowdappa, director of mobility management system, stated in a briefing, that Aruba will wait until the NAC market shakes out before considering to develop something internally. This time around Aruba OEMed their Aruba Endpoint Compliance System (ECS) appliance from a vendor that has significant success in the higher education market.

According to Chowdappa, higher education is Aruba's number one vertical, and they expect ECS to gain traction in healthcare and hospitality, markets where there are significant numbers of guest users. Aruba makes the point that many NAC vendors are targeted toward managed devices such as desktops and laptops, while ECS is able to deal with unmanaged and transient devices such as Vo-Fi phones, and the occasional Sony Wii, that may not be able to run an agent. For devices in this latter group Aruba's ECS can work in tandem with their mobility controller to implement more restrictive traffic policies leveraging Aruba's stateful firewall. And this appliance isn't restricted to just wireless products, as the appliance can take trunked wired traffic, such as guest VLANs, and enforce policy on those, too.

Aruba is making the right moves in offering its customers multiple NAC options resulting in great stickiness for their core wireless LAN products. One of the challenges that Aruba faces is that organizations may look first to their wired networking equipment vendor for a NAC product, giving Cisco a natural leg up. Aruba appears to have chosen to OEM a mature product that integrates with systems in both mediums, and with eventual implementation of 802.11n, may take a larger and larger portion of IT's mindshare and networking budget.