Medium and large enterprises organize their information data in processing centers through segmentation. The security of the segmented IT infrastructure, the processes of network segmentation and visualization of data organization, adaptation of existing applications to the cloud complicate the IT structure of the enterprise.
There is a need for built-in security solutions in the information infrastructure itself, for the functioning of security means in this network, ensuring the inviolability of the security policy and transparency of the processes of processing and transmitting data over the network cisco data center.
The Cisco ASA 5585-X Multipurpose Data Center Security Equipment operates in mission-critical data centers and meets the most stringent security requirements.
Cisco ASA 5585-X appliances use a context aware firewall and attack prevention system. These technologies are widely used all over the world.
Business security is also achieved with the Cisco ASA 5585-X solution. It is one of the best Cisco data center security solutions that fit into a small Cisco ASA 5585-X appliance just two rack units high.
Cisco ASA 9.0 software is supported by various form factor hardware on the ASA platform, including many standalone hardware, blades embedded in existing IT infrastructure, and security software for public and private clouds.
Cisco ASA 9.0 software differs from the previous version in the ability to cluster data, compatibility with the security solution Cisco Cloud Web Security (formerly ScanSafe), with the ability to fine-tune access to the World Wide Web and work with various web applications, while protecting against spyware and harmful programs and various computer viruses.
Support Security Group is Tags (SGTS) - a technology label safety groups; introducing security measures directly into the network infrastructure using Cisco TrustSec technology and extending security policies on the Cisco ASA platform.
Cisco TrustSec is a secure group access technology, the latest security solution from Cisco that categorizes systems and / or users based on context when they are connected, and further transforms security policy enforcement across the entire IT infrastructure of the data center.
These classes have group labels to allow or deny access based on intelligent security policy. Cisco TrustSec also provides firewall automation, simplifying access control processes.
Cisco ASA 1000V - Cloud Firewall protects the user network perimeter inside the data center, the shield separates the virtual environment and the physical environment.
The Cisco ASA 1000V is developed using Cisco ASA technologies, creates intelligent boundaries using VPN for the connection between network objects, translates NAT addresses, implements the DHCP functionality and protects against various attacks on the network.
A large data center for a large number of users or a private cloud must be provided with isolated traffic of various applications for different types of clients, user groups and installed software according to the established security policy.
The ASA 1000V firewall architecture integrates with the Nexus 1000V switch module , which in turn provides excellent deployment flexibility.
Cisco Virtual Security Gateway is a virtual security gateway, in combination with the Nexus 1000V switching module, in detail protects the connections of virtual machines to each other in the same client zone.
Virtual Security Gateway Cisco Virtual Security Gateway acts as a network gateway and delimits access based on security zones and provides contextual protection of virtual machines.
The Cisco Virtual Security Gateway uses Virtual Path (vPath) technology, which is provided by the functionality of the Nexus 1000V switching module.
Cisco Virtual Path (vPath) is a technology that manages internal traffic and information flows between virtual machines.
Internal traffic is controlled by the Cisco ASA 1000V cloud firewall , and traffic control is controlled by the Cisco Virtual Security Gateway .
Thus, the communication of integrated virtual services between each other, deployed in a complex security solution, is ensured.
The Cisco Virtual Security Gateway and ASA 1000V shield are also included in this solution. Cisco Virtual Path technology also provides the ability to work with virtual extensible LANs (VXLAN), which in turn makes more flexible and high-quality scaling.
High-quality network protection at a high level is provided by Cisco Nexus 1000V switching modules. Ideal for multi-client services, these soft switches add intelligent virtualization to all of the Cisco Nexus 1000V datacenter networking capabilities.
The Nexus 1000V extends the network boundaries to virtual machines and hypervisors while maintaining scalability for networks in the cloud.
Cisco Nexus 1000V software switching modules support a variety of hypervisor types, including Hyper-V Windows Server 2012, Vmware, and vSphere.
The Cisco Nexus 1000V switch is the basis for the formation of the architecture of virtual overlay networks - the main technology of the concept of SDN (Software Defined Networks).
No comments:
Post a Comment