Living the VLAN/ACL nightmare?
To control users and applications, IT has struggled to make old tools do new tricks. Resegmenting the LAN, with new IP addressing, VLANs, and ACLs, is among the hardest ways to implement those controls.
Keeping up with moves, adds, and changes and needing to understand applications at Layer 7 rather than Layer 4 make implementing and scaling those old tools untenable.
ConSentry provides a simple alternative
–
intelligent control. Per-user, per-application, per-destination control, leveraging existing identity store and flow information, means you don’t have to change anything about your addressing, VLANs, or ACLs to get full control over users and applications.
The ConSentry LANShield platform understands the user, device, role, application, and destination server involved in every LAN session and dynamically applies policy on that flow. It provides policy decision and policy enforcement in the same device, with no dependence on outside switches or other network infrastructure.
That policy enforcement applies universally throughout your network, whether users are connecting on the wired LAN, via wireless links, or over the VPN. So you build just one policy, and it works regardless of the point of access.
Avoid the ongoing hassle of trying to segment with VLANs and ACLs. Make a simpler choice for policy-based LAN segmentation with ConSentry.
We call it Intelligent Control.
You’ll call it Problem Solved.
» Compare us to Cisco
» Get NAC built into your LAN
» Why ConSentry - How are we different?
|
»
