RedSeal Network Advisor can keep security devices in compliance

Featured eBooks
Changes in State and Local Government Workforces
A New Era of Social Media Regulation
Chasing New Industry
Insights & Reports
City of Minneapolis Accelerates Digital Accessibility and Cuts Administrative Time in Half by Using Smartsheet to Process Event Permits
Presented By Carahsoft
Download Now
Cyber-Informed Engineering for OT Security and AVEVA PI Users
Presented By Carahsoft
Download Now
By Greg Crowe
 

Connecting state and local government leaders

By Greg Crowe

|

RedSeal's Network Advisor can get a network's security devices under one compliance umbrella.

Network administrators go to a lot of trouble to ensure the security of their systems. They put firewalls and routers at all of the vital chokepoints, which generally protect against unauthorized access. However, for larger organizations, there is a law of diminishing returns for security devices — the more there are, the harder it is to make sure everything is performing uniformly and correctly.

And those devices have become more complicated lately as they try to keep up with hackers’ newest tricks. No single human could possibly fully understand every firewall’s rule set or access control list (ACL).

This is where products such as RedSeal’s Network Advisor 4.0 come in. Network Advisor automatically checks the configurations of a network’s devices, servers and hosts and compares them with the desired compliance policies. It then gives the network administrator information about the devices in a concise, visually intuitive interface.

The software can be installed on any server that runs Windows 2003 or 2008 Enterprise Server 64-bit with Sun Microsystems' Java SE Runtime Environment. After setting it up in the lab, we installed the client software on a networked computer.

Scanning the network didn’t take an inordinate amount of time, but of course, that would depend on the network's size. After the software scans a system, it displays information about the network in various ways, designated by a tab in the user interface.

The first screen that greeted us was the status page, which graphically showed the most pressing best practices, policy and risk issues. The Maps & Views tab showed us a diagram of the network setup, grouped by location. Double-clicking on one of the symbols summoned all the information about that particular device. Right-clicking showed a menu that let us see at a glance all the devices that have access to that device or vice versa. Selecting a particular access path brought up details of the exact route the path takes through the network.

The Zones & Policy tab allowed us to separate the network into security zones, each of which instituted the same policies to all devices in it. That definitely made it easier to set up policies based on zones and the access among them rather than trying to monitor the settings of each device.

The Best Practices tab listed all of the policies that were in place, whether they were preloaded or custom policies.

Creating a custom policy was a relatively painless process, as we were able to clone an existing policy and work from there. That would save a lot of time on a complex network because you could set or tweak your policies to comply with your agency’s directives and then copy them to all devices that defend your network.

The Risk tab provides an abstract view of your network to highlight the most crucial needs, which is a boon for a large organization with a lot of security to track. Network devices are represented by rectangles of varying sizes relative to its value score, a calculation based on the types of services it provides. Those rectangles are colored based on risk, from bright green for safest to bright red for the most risky.

The size and color can be changed to indicate a variety of things, such as types of risk, exposure or changes in these properties. So if a device goes from very secure to just slightly secure, you can get an instant warning about the change. Clicking on any of the squares brings up the device’s detailed information. That can be a powerful tool for quickly determining the most critical vulnerabilities in the network. Just click on the red icons and read about the warnings, then fix the problems until the icons turn green.

All those tools can be used to detect the existence of a potential intrusion problem and isolate the root cause of a potential attack. We were able to quickly locate a specific device and check its rules and ACLs. That information let us approve a particular avenue of access or close it. That could save hundreds of hours that administrators would spend on finding leaks by conventional means.

The Reports tab shows about a dozen of the most common reports that a network administrator might want to generate, such as a best practices violations summary. Those reports can be run on the fly or scheduled to be periodically generated and e-mailed to specified people. If the basic report templates don’t cover what you need, you can make a new one.

RedSeal sells Network Advisor 4.0 for $1,000 per Layer 3 network device, such as firewalls and routers. For all that this application does and the potential labor it saves, we felt this was a good price. For larger networks, RedSeal offers some dedicated appliances with the Network Advisor software preinstalled, which would be a less expensive option than buying the software and your own server.

RedSeal Systems, 888-845-8169, www.redseal.net

RedSeal Network Advisor 4.0

Performance: A-

Ease of Use: B+

Features: A-

Value: B+

Price: $1,000 per Layer 3 network device

NEXT STORY: Secure AppGuard can help defend against unknown threats

X
This website uses cookies to enhance user experience and to analyze performance and traffic on our website. We also share information about your use of our site with our social media, advertising and analytics partners. Learn More / Do Not Sell My Personal Information
Accept Cookies
X
Cookie Preferences Cookie List

Do Not Sell My Personal Information

When you visit our website, we store cookies on your browser to collect information. The information collected might relate to you, your preferences or your device, and is mostly used to make the site work as you expect it to and to provide a more personalized web experience. However, you can choose not to allow certain types of cookies, which may impact your experience of the site and the services we are able to offer. Click on the different category headings to find out more and change our default settings according to your preference. You cannot opt-out of our First Party Strictly Necessary Cookies as they are deployed in order to ensure the proper functioning of our website (such as prompting the cookie banner and remembering your settings, to log into your account, to redirect you when you log out, etc.). For more information about the First and Third Party Cookies used please follow this link.

Allow All Cookies

Manage Consent Preferences

Strictly Necessary Cookies - Always Active

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Sale of Personal Data, Targeting & Social Media Cookies

Under the California Consumer Privacy Act, you have the right to opt-out of the sale of your personal information to third parties. These cookies collect information for analytics and to personalize your experience with targeted ads. You may exercise your right to opt out of the sale of personal information by using this toggle switch. If you opt out we will not be able to offer you personalised ads and will not hand over your personal information to any third parties. Additionally, you may contact our legal department for further clarification about your rights as a California consumer by using this Exercise My Rights link

If you have enabled privacy controls on your browser (such as a plugin), we have to take that as a valid request to opt-out. Therefore we would not be able to track your activity through the web. This may affect our ability to personalize ads according to your preferences.

Targeting cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites. They do not store directly personal information, but are based on uniquely identifying your browser and internet device. If you do not allow these cookies, you will experience less targeted advertising.

Social media cookies are set by a range of social media services that we have added to the site to enable you to share our content with your friends and networks. They are capable of tracking your browser across other sites and building up a profile of your interests. This may impact the content and messages you see on other websites you visit. If you do not allow these cookies you may not be able to use or see these sharing tools.

If you want to opt out of all of our lead reports and lists, please submit a privacy request at our Do Not Sell page.

Save Settings
Cookie Preferences Cookie List

Cookie List

A cookie is a small piece of data (text file) that a website – when visited by a user – asks your browser to store on your device in order to remember information about you, such as your language preference or login information. Those cookies are set by us and called first-party cookies. We also use third-party cookies – which are cookies from a domain different than the domain of the website you are visiting – for our advertising and marketing efforts. More specifically, we use cookies and other tracking technologies for the following purposes:

Strictly Necessary Cookies

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Functional Cookies

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Performance Cookies

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Sale of Personal Data

We also use cookies to personalize your experience on our websites, including by determining the most relevant content and advertisements to show you, and to monitor site traffic and performance, so that we may improve our websites and your experience. You may opt out of our use of such cookies (and the associated “sale” of your Personal Information) by using this toggle switch. You will still see some advertising, regardless of your selection. Because we do not track you across different devices, browsers and GEMG properties, your selection will take effect only on this browser, this device and this website.

Social Media Cookies

We also use cookies to personalize your experience on our websites, including by determining the most relevant content and advertisements to show you, and to monitor site traffic and performance, so that we may improve our websites and your experience. You may opt out of our use of such cookies (and the associated “sale” of your Personal Information) by using this toggle switch. You will still see some advertising, regardless of your selection. Because we do not track you across different devices, browsers and GEMG properties, your selection will take effect only on this browser, this device and this website.

Targeting Cookies

We also use cookies to personalize your experience on our websites, including by determining the most relevant content and advertisements to show you, and to monitor site traffic and performance, so that we may improve our websites and your experience. You may opt out of our use of such cookies (and the associated “sale” of your Personal Information) by using this toggle switch. You will still see some advertising, regardless of your selection. Because we do not track you across different devices, browsers and GEMG properties, your selection will take effect only on this browser, this device and this website.