HOME  |  EN GARDE BLOG  |  HOW TO BUY  |  EXTRANET LOGIN  |
ConSentry Networks    
             
 
Products
Solutions
Info Center
News
Support
Partners
Company
Overview

Key Features

Network Admission Control

Visibility

Identity-based Control

Threat Control

LANShield Controller
LANShield Switches
ConSentry InSight
ConSentry Posture Check
LANShield OS
LANShield Architecture
Mailing List

Stay informed. Sign up to receive the “Intelligent Switching Informer.”

Subscribe
Products

Key Features for Secure Switching

ConSentry enables enterprises to secure who can come onto the LAN, control what users can do once they’re on the LAN, and protect the network and data from attack. To provide this full complement of network access control and LAN security, the ConSentry LANShield product family and its underlying LANShield architecture deliver four key features:

Network Admission Control

ConSentry supports NAC by leveraging an organization’s existing AAA servers and identity stores as well as its host integrity infrastructure. Where applicable, the LANShield Switch and LANShield Controller can actively participate in user authentication and host posture checks, without the need for 802.1X or an installed host agent. Learn more about Network Admission Control.

Comprehensive Visibility

As Layer 2-7 aware devices, the LANShield Switch and LANShield Controller provide in-depth packet inspection with full L7 application decode, so they can distinguish between applications using the same L4 port or attempting to mask themselves using a port number not typically associated with that application. The platforms can filter traffic based on packet contents, and by binding a user’s name to IP and MAC addresses, the LANShield products can track LAN traffic by individual users as well as user group, application, host or other resources, protocol, L4 port, transaction, or file access. This degree of LAN visibility greatly enhances incident response. Learn more Comprehensive Visibility.

Identity-based Control

The LANShield Switch and LANShield Controller can apply access controls to everything they see. The platforms give IT the ability to define policies that limit a user’s access to networked resources based on his or her role in the organization. This identity-based access control applies universally, regardless of where or how a user connects to the network. Learn more about Identity-based Control.

Threat Control

The LANShield product family protects against both known and unknown threats, providing more accurate detection with blocking at a finer level of granularity, such as by URL, than security tools operating at lower layers. Incident reporting is based on knowledge of user transactions, and the LANShield Switch and LANShield Controller can stop traffic on a per-user or per-application basis if malware is detected. To improve VoIP security and remove printers as an attack vehicle, ConSentry can limit the protocols that printers, phones, or other devices can run and restrict which network destinations they can reach. Learn more about Threat Control.
bottom line
Customers

"The ConSentry device lets me segment IP traffic. Besides, with static IP addresses one of my staff had to manually make changes. With ConSentry, I don't think we'll worry about those manual changes anymore."

Steven Olson
Infrastructure Manager
LVRJ

» More Customers


White Paper
 
Enhancing 802.1X Deployments with the ConSentry LANShield Controller.
» Download White Paper
 


Online Demo
 
demo Learn more about our LANShield solution in this two-minute Flash demo.
» Watch the Demo
 


Home  |  Products  |  Solutions  |  Partners  |  News  |  Support  |  Site Map  |  Privacy  |  En Garde Blog
Copyright © 2008, ConSentry Networks. All rights reserved.  |  1690 McCandless Drive, Milpitas, CA 95035  |  +1 408-956-2100  |  1-866-841-9100