Network Security & Firewalls Network & Communication Information Technology

HPE IntroSpect 1550 Network Security/Firewall Appliance - 1 Year

Regular Price: $38,565.26

Special Price $30,233.41

USER AND ENTITY BEHAVIOR ANALYTICS

Aruba's User and Entity Behavior Analytics (UEBA) solution, Aruba IntroSpect, detects attacks by spotting small changes in behavior that are often indicative of attacks that have evaded traditional security defenses. Aruba IntroSpect integrates advanced AI-based machine learning (ML), pinpoint visualizations and instant forensic insight into a single solution, so attacks involving malicious, compromised or negligent users, systems and devices are found and remediated before they damage the operations and reputation of the organization.

With a Spark/Hadoop platform, IntroSpect uniquely integrates both behavior-based attack detection and forensically-rich incident investigation and response at enterprise scale.

WHAT WE DETECT: SECURITY ANALYTICS USE CASES

IntroSpect provides 100+ supervised and unsupervised machine learning models focused on detecting targeted attacks at each stage of the kill chain:

Account Abuse
Account Takeover
Command and Control
Data Exfiltration
Lateral Movement
Password Sharing
Privilege Escalation
Flight Risk
Phishing
Ransomware

ACCELERATED INVESTIGATION & RESPONSE

From SysAdmins to Systems to Sensors - Providing Instant Visibility

IntroSpect Entity360 is key to reducing the time and effort required to understand, diagnose and respond to an attack. Entity360 provides a comprehensive security profile with continuous risk scoring and enriched security information - analysts would otherwise spend hours or days searching for and compiling months and years of security data down to the packet level. Entity360 provides:

Profiles for users, systems and devices
Access by SIEM, NAC systems, etc. via an open API
Pre-packaged incident response playbooks
Customer-measured 30 hours/investigation savings
Automatic detection of other entities impacted by the attack

THREAT HUNTING

Proactive threat hunting is easily accomplished with a powerful query interface, without the overhead of finding, searching, and summarizing isolated data stores.

Rich analytics to test threat hypotheses across any timeframe
Automated search of historical data using IOC's from STIX and custom threat feeds
Visualizations to highlight anomalies and significant interactions
Significant activity monitored and tagged to assist with both hunting and investigations

DATA SOURCES

The IntroSpect platform processes the broadest range of data sources, including:

VPN, FW, IPS/IDS, Web proxy, Email logs
NetFlow
Packets
DNS logs
Active Directory logs
DHCP logs
External threat feeds
Alerts from 3rd party security infrastructure

DEPLOYMENT OPTIONS

On-premise VM or appliance for Packet Processor
AWS or on-premise deployment for Analyzer

KEY INTEGRATIONS

ArcSight
Aruba ClearPass
Blue Coat
Checkpoint
Cisco
FireEye
Forcepoint
Fortinet
Gigamon
IBM QRadar
Infoblox
IXIA
Juniper
McAfee (as in proxy server)
Microsoft
Palo Alto Networks
Splunk

Learn More

| Add to Compare

HPE IntroSpect 1550 Network Security/Firewall Appliance - 1 Year

Regular Price: $38,565.26

Special Price $30,233.41

USER AND ENTITY BEHAVIOR ANALYTICS

Aruba's User and Entity Behavior Analytics (UEBA) solution, Aruba IntroSpect, detects attacks by spotting small changes in behavior that are often indicative of attacks that have evaded traditional security defenses. Aruba IntroSpect integrates advanced AI-based machine learning (ML), pinpoint visualizations and instant forensic insight into a single solution, so attacks involving malicious, compromised or negligent users, systems and devices are found and remediated before they damage the operations and reputation of the organization.

With a Spark/Hadoop platform, IntroSpect uniquely integrates both behavior-based attack detection and forensically-rich incident investigation and response at enterprise scale.

WHAT WE DETECT: SECURITY ANALYTICS USE CASES

IntroSpect provides 100+ supervised and unsupervised machine learning models focused on detecting targeted attacks at each stage of the kill chain:

Account Abuse
Account Takeover
Command and Control
Data Exfiltration
Lateral Movement
Password Sharing
Privilege Escalation
Flight Risk
Phishing
Ransomware

ACCELERATED INVESTIGATION & RESPONSE

From SysAdmins to Systems to Sensors - Providing Instant Visibility

IntroSpect Entity360 is key to reducing the time and effort required to understand, diagnose and respond to an attack. Entity360 provides a comprehensive security profile with continuous risk scoring and enriched security information - analysts would otherwise spend hours or days searching for and compiling months and years of security data down to the packet level. Entity360 provides:

Profiles for users, systems and devices
Access by SIEM, NAC systems, etc. via an open API
Pre-packaged incident response playbooks
Customer-measured 30 hours/investigation savings
Automatic detection of other entities impacted by the attack

THREAT HUNTING

Proactive threat hunting is easily accomplished with a powerful query interface, without the overhead of finding, searching, and summarizing isolated data stores.

Rich analytics to test threat hypotheses across any timeframe
Automated search of historical data using IOC's from STIX and custom threat feeds
Visualizations to highlight anomalies and significant interactions
Significant activity monitored and tagged to assist with both hunting and investigations

DATA SOURCES

The IntroSpect platform processes the broadest range of data sources, including:

VPN, FW, IPS/IDS, Web proxy, Email logs
NetFlow
Packets
DNS logs
Active Directory logs
DHCP logs
External threat feeds
Alerts from 3rd party security infrastructure

DEPLOYMENT OPTIONS

On-premise VM or appliance for Packet Processor
AWS or on-premise deployment for Analyzer

KEY INTEGRATIONS

ArcSight
Aruba ClearPass
Blue Coat
Checkpoint
Cisco
FireEye
Forcepoint
Fortinet
Gigamon
IBM QRadar
Infoblox
IXIA
Juniper
McAfee (as in proxy server)
Microsoft
Palo Alto Networks
Splunk

Learn More

| Add to Compare

HPE Network Security Appliance - 1000Base-X, 10GBase-X - 10 Gigabit Ethernet - 1U - Rack-mountable, Rail-mountable

Regular Price: $29,769.47

Special Price $23,348.38

Today's networks have become increasingly more complex, due in part to the rapid adoption of Internet of Things (IoT) devices which are often difficult to detect and manage. In order to leverage the operational efficiencies of mobile and IoT, many organizations are deploying a wide range of devices, without fully understanding the security and compliance implications.

Aruba ClearPass Device Insight provides a full-spectrum of visibility across the network by intelligently discovering and profiling all connected devices. This includes detailed device attributes such as device type, vendor, hardware version, and behavior including applications and resources accessed. This allows organizations to create more granular access policies, reduce security risks and meet key compliance requirements.

As a part of Aruba's ClearPass family of industry-leading access control solutions, ClearPass Device Insight provides the visibility needed to make better informed network access control decisions. Integration with ClearPass Policy Manager delivers comprehensive policy control and real time enforcement. This makes the visibility provided by ClearPass Device Insight actionable and increases the overall level of security and compliance for all devices connected to the network.

FULL-SPECTRUM VISIBILITY

ClearPass Device Insight addresses the most stringent visibility requirements for the most diverse network environments. This includes the ability to broadly and accurately identify all wireless and wired devices connected to the network - from traditional IT managed devices to previously undetected IoT devices such as cameras, medical equipment and other hard to detect endpoints.

ClearPass Device Insight utilizes a unique set of both active (NMAP, WMI, SNMP, SSH) and passive discovery methods (SPAN, DHCP, NetFlow/S-flow/IPFIX) in order to discover and classify a wider range of device types. These capabilities are further enhanced through the use of deep packet inspection which provides additional context and behavioral information that can further identify difficult-to-detect devices connected to the network.

RICH CONTEXT AND BEHAVIORAL INTELLIGENCE

By utilizing data collection and deep packet inspection techniques, ClearPass Device Insight is able to analyze the characteristics and behavioral patterns of any device and extract specific attributes for each. Some of these attributes include domain name lookup, destination IP addresses, applications accessed, and frequency of communication. These attributes can then be used to identify a device using a set of known fingerprints. If there is not a match, machine learning models are used to group unknown devices that exhibit similar characteristics.

Learn More

| Add to Compare

Aruba ClearPass N3001 1G Hardware Appliance - Out of Band Management - 10GBase-X - 25 Gigabit Ethernet - PEAP, EAP-FAST, MSCHAPv2, EAP-GTC, EAP-TLS, EAP-PEAP, TTLS, WPA3 - 4 Total Expansion Slots - 50 Hz, 60 Hz - 1U - Rack-mountable

Regular Price: $50,021.06

Special Price $48,000.00

HPE Aruba Networking's ClearPass Policy Manager, part of the HPE Aruba Networking 360 Secure Fabric, provides role- and device-based secure network access control for IoT, BYOD, corporate devices, as well as employees, contractors and guests across any multivendor wired, wireless and VPN infrastructure.

With a built-in context-based policy engine, RADIUS, TACACS+, non-RADIUS enforcement using OnConnect, device profiling, posture assessment, onboarding, and guest access options, ClearPass is unrivaled as a foundation for network security for organizations of any size.

For comprehensive integrated security coverage and response using firewalls, UEM and other existing solutions, ClearPass supports the HPE Aruba Networking 360 Security Exchange Program. This allows for automated threat detection and response workflows that integrate with third-party security vendors and IT systems previously requiring manual IT intervention.

In addition, ClearPass supports secure self-service capabilities, making it easier for end users trying to access the network. Users can securely configure their own devices for enterprise use or Internet access based on admin policy controls.

The result is detailed visibility of all wired and wireless devices connecting to the enterprise, increased control through simplified and automated authentication or authorization of devices, and faster, better incident analysis and response through the integration and orchestration with third-party security solutions. This is achieved with a comprehensive and scalable policy management platform that goes beyond traditional AAA solutions to deliver extensive enforcement capabilities for IT-owned and BYOD security requirements.

Learn More

| Add to Compare

Aruba ClearPass N3000 1G Hardware Appliance - Out of Band Management - 4 Port - 1000Base-T - Gigabit Ethernet - PEAP, EAP-FAST, MSCHAPv2, EAP-GTC, EAP-TLS, EAP-PEAP, TTLS, WPA3 - 4 x RJ-45 - 50 Hz, 60 Hz - Rack-mountable

Regular Price: $39,600.00

Special Price $38,000.00

HPE Aruba Networking's ClearPass Policy Manager, part of the HPE Aruba Networking 360 Secure Fabric, provides role- and device-based secure network access control for IoT, BYOD, corporate devices, as well as employees, contractors and guests across any multivendor wired, wireless and VPN infrastructure.

With a built-in context-based policy engine, RADIUS, TACACS+, non-RADIUS enforcement using OnConnect, device profiling, posture assessment, onboarding, and guest access options, ClearPass is unrivaled as a foundation for network security for organizations of any size.

For comprehensive integrated security coverage and response using firewalls, UEM and other existing solutions, ClearPass supports the HPE Aruba Networking 360 Security Exchange Program. This allows for automated threat detection and response workflows that integrate with third-party security vendors and IT systems previously requiring manual IT intervention.

In addition, ClearPass supports secure self-service capabilities, making it easier for end users trying to access the network. Users can securely configure their own devices for enterprise use or Internet access based on admin policy controls.

The result is detailed visibility of all wired and wireless devices connecting to the enterprise, increased control through simplified and automated authentication or authorization of devices, and faster, better incident analysis and response through the integration and orchestration with third-party security solutions. This is achieved with a comprehensive and scalable policy management platform that goes beyond traditional AAA solutions to deliver extensive enforcement capabilities for IT-owned and BYOD security requirements.

Learn More

| Add to Compare

Aruba ClearPass N1000 1G Hardware Appliance - Out of Band Management - 4 Port - 1000Base-T - Gigabit Ethernet - PEAP, EAP-FAST, MSCHAPv2, EAP-GTC, EAP-TLS, EAP-PEAP, TTLS, WPA3 - 4 x RJ-45 - 50 Hz, 60 Hz - Rack-mountable

Regular Price: $7,815.79

Special Price $7,500.00

HPE Aruba Networking's ClearPass Policy Manager, part of the HPE Aruba Networking 360 Secure Fabric, provides role- and device-based secure network access control for IoT, BYOD, corporate devices, as well as employees, contractors and guests across any multivendor wired, wireless and VPN infrastructure.

With a built-in context-based policy engine, RADIUS, TACACS+, non-RADIUS enforcement using OnConnect, device profiling, posture assessment, onboarding, and guest access options, ClearPass is unrivaled as a foundation for network security for organizations of any size.

For comprehensive integrated security coverage and response using firewalls, UEM and other existing solutions, ClearPass supports the HPE Aruba Networking 360 Security Exchange Program. This allows for automated threat detection and response workflows that integrate with third-party security vendors and IT systems previously requiring manual IT intervention.

In addition, ClearPass supports secure self-service capabilities, making it easier for end users trying to access the network. Users can securely configure their own devices for enterprise use or Internet access based on admin policy controls.

The result is detailed visibility of all wired and wireless devices connecting to the enterprise, increased control through simplified and automated authentication or authorization of devices, and faster, better incident analysis and response through the integration and orchestration with third-party security solutions. This is achieved with a comprehensive and scalable policy management platform that goes beyond traditional AAA solutions to deliver extensive enforcement capabilities for IT-owned and BYOD security requirements.

Learn More

| Add to Compare

Allied Telesis VPN Firewall - 6 Port - 1000Base-T - Gigabit Ethernet - SHA-1, 3DES, SHA-256, AES (128-bit), AES (192-bit), AES (256-bit) - 6 x RJ-45 - Rack-mountable

Regular Price: $861.27

Special Price $733.51

Allied Telesis Virtual Private Network (VPN) Firewalls are the ideal secure gateway for modern businesses. Powerful VPN functionality is combined with comprehensive routing and switching, providing an innovative high performance solution that is easy to use and very secure.

As businesses adapt to faster paced operations, with increasing amounts of data, and the need to access company resources from outside the office, the demand for high performance VPN connectivity becomes more urgent.

The AR2050V features comprehensive security and advanced networking capabilities, meeting the demands of distributed businesses that require multi-site VPNs.

High performance

Harnessing the power of multi-core processors and hardware acceleration engines guarantees high performance, by dramatically increasing throughput and enabling sustained low latency traffic inspection.

Powerful firewall

The firewall on the AR2050V inspects every packet passing through it, so different traffic types can be managed in line with business security policies. Allied Telesis VPN Firewalls are the ideal solution for enterprise and branch offices requiring secure online connectivity.

Intrusion Detection and Prevention System (IDS/IPS)

IDS/IPS is an intrusion detection and prevention system that protects your network from malicious traffic. IDS/IPS monitors inbound and outbound traffic, and identifies threats which may not be detected by the firewall alone.

Secure Remote VPNs

The Allied Telesis VPN Firewall supports IPSec site-to-site VPN connectivity to connect one or more branch offices to a central office, providing employees company-wide with consistent access to the corporate network.

Remote workers can utilize an SSL VPN connection to encrypt their business data over the Internet, allowing them to utilize all their business resources when working from home, travelling, or otherwise away from the company premises.

Comprehensive routing support

The security features of the VPN Firewall are complemented by advanced routing and switching capability. Full IPv6 routing and protocol implementation ensures today's networks are fully connectable, both internally and externally with other leading edge equipment. Powerful multicasting features support streaming video and voice traffic in modern converged networks.

High availability

When online connectivity is critical, the VPN Firewall has a bypass port to allow a link to another device as a passive backup. Automated failover immediately transmits Internet-bound traffic to the backup device, to maximize the availability of external connectivity, and ensure no loss of business productivity.

Easy to manage

The AR2050V runs the advanced AlliedWare Plus™ fully featured operating system, with an industry standard CLI. The Graphical User Interface (GUI) provides a dashboard for monitoring, showing traffic throughput, security status, and application use at a glance. Configuration of security zones, networks and hosts, and rules to limit and manage traffic, provides a consistent approach to policy management.

Full support for Allied Telesis Management Framework (AMF) allows the Allied Telesis VPN Firewall to integrate with Allied Telesis switching products, forming a network that can be managed as a single virtual entity. A full suite of automated tools ensures that the firewall is fully backed up and recoverable without user intervention, maximizing the availability of online services.

Learn More

| Add to Compare

Allied Telesis Next-Generation Firewall - 10 Port - 1000Base-X, 1000Base-T - Gigabit Ethernet - Wireless LAN - 10 x RJ-45 - 4 Total Expansion Slots - Desktop, Rack-mountable

Regular Price: $1,043.36

Special Price $855.54

Allied Telesis Next-Generation Firewalls are an ideal integrated security platform for today's networks. Next-Generation Firewall and threat protection is combined with routing and switching, to provide an innovative high-performance solution.

Deep Packet Inspection (DPI) Firewall

The Allied Telesis Firewall is a next-generation, Deep Packet Inspection (DPI) engine that provides real-time, Layer 7 classification of network traffic. Rather than being limited to filtering packets based on protocols and ports, the firewall can determine the application associated with the packet. This allows Enterprises to differentiate business-critical from non-critical applications, and enforce security and acceptable use policies in ways that make sense for the business.

"Best of Breed" Security

Allied Telesis integrated security platforms utilize "best of breed" security providers for the ultimate in up-to-the-minute protection from all known threats. Flexible licensing options make it easy to choose the right combination of security features to best meet business needs.

Intrusion Detection and Prevention Systems (IDS/IPS)

IDS/IPS is an intrusion detection and prevention system that can protect networks from malicious traffic. IDS/IPS monitors inbound and outbound traffic, and identifies threats which may not be detected by the firewall alone.

IP Reputation

IP Reputation is becoming increasingly popular as a method of improving the success of Intrusion Prevention by reducing false positives. IP Reputation provides an extra variable to the prevention decision, which allows drop rules to be actioned only if the reputation of the web site exceeds a chosen threshold.

Easy to Manage

Allied Telesis Next-Generation Firewalls run the advanced AlliedWare Plus™ fully featured Operating System. The comprehensive Graphical User Interface (GUI) provides a single-pane-of-glass interface, with the dashboard providing at-a-glance status of threat detection and protection. The GUI centralizes management of the integrated components, to control and protect online business resources and applications.

Full support for Allied Telesis Management Framework™ (AMF) allows Allied Telesis Firewalls to integrate with Allied Telesis switching products to form a network able to be managed as a single virtual device. A full suite of automated tools ensures that the firewall configuration is backed up, and able to be recovered with no user intervention, maximizing availability of online services.

High performance

High performance is guaranteed by harnessing the power of multi-core processors and application acceleration engines. This dramatically increases throughput and enables simultaneous packet inspection.

Learn More

| Add to Compare

Allied Telesis Next-Generation Firewall - 10 Port - 1000Base-X, 1000Base-T - Gigabit Ethernet - Wireless LAN - 10 x RJ-45 - 4 Total Expansion Slots - Desktop, Rack-mountable

Regular Price: $1,342.40

Special Price $1,099.59

Allied Telesis Next-Generation Firewalls are an ideal integrated security platform for today's networks. Next-Generation Firewall and threat protection is combined with routing and switching, to provide an innovative high-performance solution.

Deep Packet Inspection (DPI) Firewall

The Allied Telesis Firewall is a next-generation, Deep Packet Inspection (DPI) engine that provides real-time, Layer 7 classification of network traffic. Rather than being limited to filtering packets based on protocols and ports, the firewall can determine the application associated with the packet. This allows Enterprises to differentiate business-critical from non-critical applications, and enforce security and acceptable use policies in ways that make sense for the business.

"Best of Breed" Security

Allied Telesis integrated security platforms utilize "best of breed" security providers for the ultimate in up-to-the-minute protection from all known threats. Flexible licensing options make it easy to choose the right combination of security features to best meet business needs.

Intrusion Detection and Prevention Systems (IDS/IPS)

IDS/IPS is an intrusion detection and prevention system that can protect networks from malicious traffic. IDS/IPS monitors inbound and outbound traffic, and identifies threats which may not be detected by the firewall alone.

IP Reputation

IP Reputation is becoming increasingly popular as a method of improving the success of Intrusion Prevention by reducing false positives. IP Reputation provides an extra variable to the prevention decision, which allows drop rules to be actioned only if the reputation of the web site exceeds a chosen threshold.

Easy to Manage

Allied Telesis Next-Generation Firewalls run the advanced AlliedWare Plus™ fully featured Operating System. The comprehensive Graphical User Interface (GUI) provides a single-pane-of-glass interface, with the dashboard providing at-a-glance status of threat detection and protection. The GUI centralizes management of the integrated components, to control and protect online business resources and applications.

Full support for Allied Telesis Management Framework™ (AMF) allows Allied Telesis Firewalls to integrate with Allied Telesis switching products to form a network able to be managed as a single virtual device. A full suite of automated tools ensures that the firewall configuration is backed up, and able to be recovered with no user intervention, maximizing availability of online services.

High performance

High performance is guaranteed by harnessing the power of multi-core processors and application acceleration engines. This dramatically increases throughput and enables simultaneous packet inspection.

Learn More

| Add to Compare

Allied Telesis UTM AR4050S Network Security/Firewall Appliance - Intrusion Prevention - 8 Port - 10/100/1000Base-T, 1000Base-X - Gigabit Ethernet - 1.86 Gbit/s Firewall Throughput - SHA-1, SHA-256, SHA-512, 3DES, AES (128-bit), AES (192-bit), AES (256-bit

Regular Price: $2,805.67

Special Price $2,499.51

AR3050S and AR4050S

Allied Telesis Unified Threat Management (UTM) Firewalls are the ideal integrated security platform for modern businesses. Powerful firewall and threat protection is combined with routing and switching, to provide an innovative high performance solution.

The AR3050S and AR4050S are the ideal choice for high speed Enterprise gateway applications. The UTM Firewalls feature an integrated "best of breed" security platform to provide up-to-the-minute threat protection with advanced networking capabilities, and the AR4050S is ICSA corporate firewall certified.

High performance

High performance is guaranteed by harnessing the power of multi-core processors and application acceleration engines, as well as the ability to offload security and threat protection feature processing for increased throughput.

Advanced feature licenses

Flexible subscription licensing options make it easy to choose the right combination of security features to best meet your business needs. The Firewall license includes App Control, Web Control and URL Filtering. The Advanced Threat Protection (ATP) license includes IP Reputation, stream-based Malware Protection and proxy-based Antivirus . The AMF-Security mini license enables our state-of-the-art integrated solution that automatically protects the LAN from internal security threats. All other security features are included in the base feature set.

The Allied Telesis Autonomous Management Framework™ (AMF) and AWC licenses1 enable automated management of wired and wireless network nodes, while the UTM Offload license supports increased WAN connection throughput.

Application-aware Firewall

The Allied Telesis UTM Firewalls have a Deep Packet Inspection (DPI) engine that provides real-time, Layer 7 classification of network traffic. Rather than being limited to filtering packets based on protocols and ports, the firewall can determine the application associated with the packet. This allows Enterprises to differentiate business-critical from non-critical applications, and enforce security and acceptable use policies in ways that make sense for the business.

Secure Remote Virtual Private Networks (VPN)

Allied Telesis UTM Firewalls support IPSec site-to-site VPN connectivity to connect one or more branch offices to a central office, providing employees company-wide with consistent access to the corporate network. Multipoint VPN enables a single VPN to connect the central office to multiple branc

Remote workers can utilize an SSL VPN connection to encrypt their business data over the Internet, allowing them to utilize all their business resources when working from home, travelling, or otherwise away from the company premises.

Learn More

| Add to Compare