The LANShield Controller and LANShield Switch use deep packet inspection to admit users onto the LAN, provide visibility into LAN activities, control access based on identity, and contain malware and other attacks. ConSentry InSight provides IT with the means for capturing and viewing all the data as well as for setting policies.

Download ConSentry InSight Command Center Datasheet in PDF

The LANShield OS and LANShield devices provide the full set of capabilities needed to protect enterprise assets:

 Network Admission Control (NAC) – authentication and posture check to control who can     enter the LAN
 Visibility – incident- and exception-based information at Layer 7, including attributes such as     file name, tied back to the user
 Identity-based control – role-based provisioning to control user activities on the LAN
 Threat control – block propagation of worms and other malware to prevent network     meltdown

Download LANShield Datasheet in PDF

GEM enables organizations to manage security policies and aggregate reporting for IM, P2P and spyware traffic across distributed enterprise environments. By integrating with RTGuardian and other components of FaceTime Enterprise Edition, GEM delivers the first network-based anti-spyware solution to targeted remediation and repair of infected endpoints without deploying client software.

GEM comprises two components:
 GEM Management Console
 GEM Endpoint Remediation

Together, the GEM components:
 ggregate reports from multiple RTGuardian appliances to provide visibility into IM and P2P     usage as well as endpoint spyware infections
 Deliver user and host level visibility through Active Directory integration
 Identify endpoints with phone-home spyware infections detected by RTGuardian
 Apply appropriate anti-spyware policies to scan, clean, and inoculate infected endpoints     without the need for local agents
 Prevent spyware from downloading or executing on the client using patent-pending endpoint     inoculation

Download Greynet Enterprise Manager Datasheet in PDF

Maestro AFE
The Maestro AFE offers a variety of acceleration, optimization, availability, and security features. The key features include:

 TCP Termination and Offload
 Data Compression
 Server Load Balancing
 SSL Acceleration and Offload
 Security and Protection

Maestro AFE's architecture and features set can protect against a large number of malicious attacks. A small sampling of such attacks are listed below:
 Land Attack
 SYN Attack
 Teardrop
 Ping of Death
 Open/Close Attack
 ICMP Unreachable Attack
 ICMP Redirect Attack
 Ping Attack
 ARP Attack
 Christmas Tree Attack
 TCP Flood
 Smurf
 Looping UDP Ports
 Fraggle
 UDP Flood

Maestro ALP
Maestro ALP targets performance problems in the logical processing tiers of applications, rather than traditional application acceleration products that have targeted content delivery optimization. Maestro ALP is based on award-winning ALP (Application Layer Processing) technology.

Since Maestro ALP front-ends multi-tier applications much like Maestro AFE, it also supports Maestro AFE's TCP Offload and Load Balancing feature set. However, ALP technology is what drives the key benefits of Maestro ALP.

Download Maestro ALP Datasheet in PDF

Maestro Blade
Available in a modular design, Crescendo’s Maestro product line consolidates essential IT features including TCP offload and acceleration, SSL acceleration, compression, load balancing, and security. The Advanced Application Delivery Blade (AADB) delivers Maestro functionality in a blade form factor that allows seamless integration within any complementary networking device.

Download Maestro Blade Datasheet in PDF

Maestro Management
Launched from a web browser, Maestro GUI is a powerful java-based management application. The GUI incorporates the following critical functions:

 Complete performance monitoring. View real-time statistics for each server, load-balanced cluster of servers, as well as compression and SSL performance information.
 Comprehensive configuration and device management capabilities. Add servers or modify existing configuration criteria on the fly.
 Analyze historical statistical data. Generate performance graphs based on historical information saved by the Maestro platform to learn about traffic and application performance trends. View online event information.

Maestro Platform
Crescendo’s Maestro Platform is based on a unique purpose-built architecture which represents the industry’s first implementation of Layer 2-7 functionality in dedicated hardware.

Designed from the ground up to handle complex acceleration/optimization tasks, the architecture uses multiple network processors along with multiple FPGAs (Field Programmable Gate Arrays) to accomplish all processing tasks. Within the main processing components, 80 Application Micro Engines (AMEs) are employed to perform multiple functions available in the device.

Each AME is responsible for a different task and all AMEs operate simultaneously. The result is a truly distributed architecture where the complex processing tasks are spread across multiple components, each with dedicated resources. Other architectural highlights include:

 All functions, including TCP termination/offload/acceleration, load balancing, compression, and SSL offload are performed by dedicated hardware
 Dedicated memory is allocated to each component so there is no memory shared between tasks
 A totally hardware-based compression engine performs inline compression at multi-gigabit scale, with zero latency. The Use of programmable components allows new features to be added via software upgrades, rather than component replacement
 The platform is designed to provide maximum scale, while remaining flexible. This creates a robust, hardware-based platform with hardware performance and software flexibility

Download Maestro Platform Datasheet in PDF

Netfence Management Center
Security-conscious companies and managed security providers have to deal with a rapidly increasing number of gateways in their networks. These gateways have to be rolled out, configured and monitored on a permanent basis.

At the same time, a company-wide security policy has to be constantly updated to all gateways. This increasingly restricts the configuration of individual systems with each other. A simple site-to-site VPN tunnel assumes that at least two gateways are synchronized with each other.

The Netfence Management Centres permit comprehensive management of the entire security infrastructure with cost-effective deployment of resources. The Netfence solutions and phionOS-based servers are administered via dedicated and centralized servers. Using the Netfence management centres, administrators monitor the status of remote gateways, administer the Netfence configurations and software, define global standards and record information about individual or multiple gateways. Central configuration management includes VPN and firewall policies, as well parameters such as software licences. This means that disaster recovery is possible in less than 4 minutes.

Benefits
 Central management increases security and reduces costs
 Impressive real-time visualization
 VPN GTI (Graphical Tunnel Interface) for configuration and visualization of VPN tunnels
 Scalability
 Remote management
 Easy disaster recovery
 Audit trail with Revision Control System
 Phion PKI for preparing and administering digital x.509v3 certificates

Download Netfence Management Center Datasheet in PDF

nMetrics Application Monitor
The nMetrics Application Monitor is a purpose built 'Application Layer' monitoring appliance designed to meet operational and infrastructure management requirements by combining real-time troubleshooting, long term trending, availability management, event alarming and reporting in a single integrated enterprise view. It provides a window to the network allowing network administrators visibility of network usage. The Applications Monitor unites 4 core management disciplines in a single system.

  Application Visibility   Capacity Planning   Availability Manager   Event Manager

  nMetrics Application Monitor 3001
  nMetrics Application Monitor 6001
  nMetrics Application Monitor 9001 & 9051

Data Collector
The Data Collector is a low-cost alternative to the fully-featured Application Monitors: a purely functional probe that feeds information to the Traffic Performance Manager. It is an ideal data collector for remote sites and tight budgets.

The Data Collector comes in three models:
 Data Collector 3000 (CL3000) has 20 GB HDD, 512 MB RAM, 1 RU.
 Data Collector 6000 (CL6000) has 120 GB HDD, 512 MB RAM, 1 RU.
 Data Collector 9000 (CL9000) has 200 GB HDD, 512 MB RAM, 1 RU.

Traffic Performance Manager
The Traffic Performance Manager (TPM) is a software designed specifically for large distributed networks to collect data and information from separate/remote locations. It consolidates large scale network traffic from separate locations into one centralised platform giving an instantaneous view of the entire network and it provides application traffic performance metrics.

With clear visibility into the network's performance, help desk and network operators are able to make well-informed decisions based on accurate and up-to-date information. Management can use this tool to make its investment and infrastructure decisions with complete confidence as it has a comprehensive and customised view of its network - including past trends, present demands and future inclinations.

The TPM provides information on capacity planning, application visibility, application and network latency, availability, event and ToS management. The TPM is offered in two versions:

 TPM 2000 (Enterprise Version) takes feeds up to 15 Application Monitors/Data Collectors, has 146 GB of storage, RAID 4, 2x Dual Xeon, 4 GB RAM, NIC.
 TPM 2010 (Service Provider Version) takes feeds up to 50 Application Monitors/Data Collectors, has 300 GB of storage, RAID 5, 2x Dual Xeon, 4 GB RAM, NIC

PhionOS
PhionOS converts a hardened and optimized Linux operating system into a fully managed operating system using additional structural components. This means that every gateway becomes a software appliance. Users determine the number or type of the available network interfaces and equipment costs. The innovative fast Netfence installation procedure takes less than four minutes in order to set up a new gateway on Intel hardware and set into operation. The same applies to reinstatement after a hardware failure.

PhionOS forms the basis for the entire Netfence product family and has the following core features:
 Comprehensive networking and routing capabilities to provide support for multi-provider installations or redundant routing paths
 Dedicated host firewall
 VLAN support for security integration within the existing networks
 High availability for maximum dependability and fault-tolerant operation
 Monitoring of total system status and real-time monitoring of activities
 Support for dynamic IP address allocation which is used for broadband links between small branch offices and the Internet
 Management functions on GUI basis for system monitoring and complete configuration of Phion Netfence.
 Available as in-band and via dedicated network interfaces. Serial interfaces and a command line are also available.

Proactively prevent and contain outbreaks with Trend Micro Outbreak Prevention Services. These attack-specific recommendations from TrendLabs help you prevent or contain outbreaks before other defenses—patches, pattern files and network signatures—are ready for deployment.

Get more information on Outbreak Prevention Services

The RSA Authentication Deployment Manager can reduce deployment and ongoing administrative costs by offering end users a self-service platform for requesting, activating and initiating deployment of RSA SecurID® credentials. The system automates the entire credential deployment process —including user requests for credentials, approvals and populating the RSA Authentication Manager with user data and hardware or software token assignment / activation.

 Workflow system for rapid, low-cost deployment of RSA SecurID hardware and software     tokens
 User self-service functionality to reduce ongoing administrative costs
 Offers high performance and scalability with database replication
 Flexibility to customize deployment and user self service in accordance with business     policies

Download RSA Authentication Deployment Manager Datasheet in PDF

As the need for positive user identification and protection of valuable corporate information has increased, so has the need for an authentication solution that is a strategic, mission-critical component of an organization’s network security infrastructure. RSA Authentication Manager provides this mission-critical component by scaling to support millions of users and protecting multiple applications and resources across numerous physical sites.

 Powers strong authentication for millions of RSA SecurID end-users worldwide
 Supports millions of users and hundreds of simultaneous authentications
 Offers high performance and scalability with database replication
 Provides centralized, easy and cost-effective administration
 Delivers robust logging and reporting capability
 Interoperates with more than 300 networking products and applications out of the box

Download RSA Authentication Manager Datasheet in PDF

The RSA SecurID Appliance is designed to validate the identities of users by requiring the user to present a PIN (something they know) along with their token code (something they have) before granting access to valuable network resources. The appliance has been designed with choice and organizational preferences in mind; it can be easily configured to meet varying business needs.

Large Enterprises
The RSA SecurID Appliance can scale to support large groups of internal users.
 Choice of token
 Supports up to 50,000 users
 Provides a choice between Base License (1primary, 1 replica) or Enterprise License (1     primary, up to 10 replicas in a single realm and up to 6 realms)
 RSA Deployment Manager software is included with an Enterprise Appliance License to     simplify and manage token deployments.
 Provides cost-effective deployments through the seamless operation between the RSA     Authentication Manager (primary) and the RSA SecurID Appliance (replica) which is easily     installed at remote locations with less IT Staff

Smaller Organizations
The RSA SecurID Appliance can also meet the needs of smaller organizations through preconfigured, fixed-price user solution bundles to support 10, 25, 100, 150 and 250 users. Each bundle consists of:
 The RSA SecurID Appliance with embedded sole-purpose Microsoft® Windows® 2003     operating system and RSA Authentication Manager software pre-loaded. This includes a
   12-month hardware warranty.
 Support for 1 primary plus 1 replica for high-availability applications
 3-year RSA SecurID SID700 authenticators (tokens)
 RSA Authentication Manager Base Edition license (1 master, 1 replica)

Download RSA SecurID Appliance Datasheet in PDF

RSA SecurID hardware tokens provide "hacker-resistant" two-factor authentication, resulting in easy-to-use and effective user identification. With RSA SecurID hardware authenticators, no interaction with the user desktop is required — that is, you don't have to install or maintain any software. Equally important, you are not required to program tokens. They are ready to use out of the box.

Download RSA SecurID Hardware Authenticators Datasheet in PDF

Restore infected clients to full operational health with Damage Cleanup Services (DCS). DCS removes spyware, rootkits, worms, virus remnants and trojans that can elude typical antivirus solutions. DCS also repairs system registries and memory, reducing the administration and time costs associated with threat outbreaks.

Get more information on Damage Cleanup Services

Trend Micro Email Reputation Services stop up to 80 percent of spam at its source—before it can hit the gateway and flood the messaging infrastructure. As the only email reputation service to offer an administration console, these services offer access to real-time global spam reports with the option to actively manage spam and blended email threats if desired.

Options to choose:
 Email Reputation Services Advanced
 Email Reputation Services Standard
 Email Reputation Services Hosted

Proactively manage your security infrastructure with centralized administration for security updates, patch deployment, coordinated response, and remote management capabilities. Trend Micro Control Manager acts as a central command center for deploying threat-specific expertise across the network and select third-party products.

Get more information on Outbreak Prevention Services

Websense Enterprise improves productivity, reduces legal liability, and optimizes the use of IT resources. Websense Enterprise Corporate Edition provides enterprise-class features, such as Delegated Administration and Reporting, Remote Administration, Auditing, SNMP alerts for Security Event Management (SEM) integrations, and Selective database logging for large, multi-site, or decentralised customers.

Download Websense Enterprise Datasheet in PDF

Websense Client Policy Manager
Websense Client Policy Manager provides a comprehensive endpoint security solution by preventing the installation, execution, and network access of unauthorised applications, enforcing application use policies and providing registry protection.

Benefits:
 Addresses weaknesses in existing antivirus, anti-spyware, personal firewall, and patch     management processes to render today’s attacks harmless.
 Provides application awareness and usage policy enforcement on the endpoint for blocking     malicious software while ensuring compliance and productivity.
 Prevents malicious applications from changing registry settings and tracks suspicious     registry activities.
 Protects remote and mobile users operating outside of the network or without standard security updates or patches.
 Includes protection from the threats and compliance risks around web access and URL     content for remote and mobile users.
 Works with Network Access Control (NAC) solutions to enforce policy on devices trying to     enter the network, denying access to non-compliant endpoints.
 Via integrations, enables network-level protection from inbound threats and creates     dynamic and application-aware firewalling.
 Provides multiple levels of control to prevent the launch or mitigate the propagation of     security attacks.

Download Websense Enterprise Datasheet in PDF