Living the VLAN/ACL nightmare?
As the need to protect sensitive data on the LAN increases at the same time that organizations are hosting increasingly varied users, IT has struggled to make old tools do new tricks. Resegmenting the LAN, with new IP addressing, VLANs, and ACLs, is among the hardest ways to implement those controls.
Keeping up with moves, adds, and changes and needing to understand applications at Layer 7 rather than Layer 4 make implementing and scaling those old tools untenable.
ConSentry provides a simple alternative
–
intelligent switching. Per-user, per-application, per-destination control, leveraging existing identity store and flow information, means you don’t have to change anything about your addressing, VLANs, or ACLs to get full control over users and applications.
The ConSentry LANShield platform understands the user, device, role, application, and destination server involved in every LAN session and dynamically applies policy on whether that flow should be allowed. It provides policy decision and policy enforcement in the same device, with no dependence on outside switches or other network infrastructure.
That policy enforcement applies universally throughout your network, whether users are connecting on the wired LAN, via wireless links, or over the VPN. So you build just one policy, and it works regardless of the point of access.
Avoid the ongoing hassle of trying to segment with VLANs and ACLs. Make a simpler choice for policy-based LAN segmentation with ConSentry.
We call it Intelligent Switching.
You’ll call it Problem Solved.
» Compare us to Cisco
» Get NAC built into your switch
» Why ConSentry - How are we different?
|
»
