The Web    Google
Arbor Adds Support for Cisco Firewall to DoS Appliance

Arbor Adds Support for Cisco Firewall to DoS Appliance
April 11, 2002

Arbor Networks has announced a new version of its Peakflow DoS (Denial of Service) appliance that adds support for Cisco firewalls, the netForensics security console and new traffic management capabilities.

Peakflow detects DoS and Internet worm attacks that threaten network availability by comparing actual traffic patterns to a baseline of normal traffic patterns. When it detects an anomaly, Peakflow sounds an alert and also suggests a rule, or filter, that can be applied to routers to thwart the attack.

Previous versions of Peakflow generated filters for Cisco and Juniper routers. Version 2.1 adds support for the Cisco PIX Firewall as well, meaning the firewall can now be brought into play to help thwart attacks. Additionally, Arbor has simplified the process of applying the filters that Peakflow generates, says Ted Julian, chief strategist and co-founder of Arbor.

In the past, Peakflow would generate the exact filter syntax and users would copy and paste it into their Cisco or Juniper routers. Now Arbor has added an "install" button that enables the filters to be applied with a single click, Julian says, a boon for administrators who may not be familiar with how to configure routers and firewalls.

Peakflow can accomplish all of that fast enough to thwart an attack that is in progress. "In less than a minute, the customer has a suggested filter to remediate the attack," Julian says.

Also new in Peakflow 2.1 is support for the netForensics ActiveEnvoy security console. Peakflow will be able to send alerts to ActiveEnvoy, which collects and correlates alerts from various other security systems, including firewalls, intrusion detection systems and virtual private network devices.

Arbor has also added a traffic module that enables users to maintain a constant view of network traffic levels as compared to a historical baseline. That will help users not only detect and troubleshoot spikes in network traffic, but large dropoffs as well, such as when a wide-area link goes down.

That can be especially important in large enterprise or service provider networks that employ bandwidth from many different carriers, Julian says. Peakflow will help users determine which carrier's service is the cause of an outage.

Peakflow 2.1 is available now. Prices start at $130,000 for enterprise deployments.

  • IRS Giving Goods Away
  • Senate Debating Data Privacy Changes
  • FTC Seeks Court Order Against "Do Not Call" Web Site
  • AT&T on DoS: Early Detection Equals Prevention
  • 4/5: Bdoor-ZAT Trojan Opens Backdoor
  • 1/10: Gaobot.CKP Worm Lets Hackers In
  • Meta Group Slams Wireless LAN Suppliers on Security
  • Network-1 Offers Centralized Policy Control For Distributed Firewalls
  • 4/5: Bdoor-ZAT Trojan Opens Backdoor
  • Homeland Security Names First Privacy Czar
  • 9/16: Evaman-D Worm Kills Active Processes
  • Security Camera Companies and products