Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer

Network Access Control

Check Point and EnterasysEnterasys

IT professionals are challenged to manage threats to network security caused by viruses, spyware, worms, and other malware. Infected or vulnerable machines should be automatically isolated from the network until the infection is removed or the vulnerability remediated. While several proprietary (vendor specific) initiatives address this problem, only one standard exists that is widely supported by heterogeneous networking devices: 802.1X/EAP.

Enterasys and Check Point have teamed up to certify and promote a joint solution based on the 802.1X/EAP standard. The joint solution-comprising Enterasys Networks Matrix switches and Check Point Endpoint Security software-automatically verifies compliance with corporate security policy prior to enabling access to the network via Enterasys switches. Non-compliant endpoints are automatically placed in a remediation VLAN, where access is provided to remediation tools while shielding infected endpoints from the production network.

Benefits

  • Automated quarantine of infected endpoints
  • Automatic enforcement of corporate security standards
  • Standards-based approach, enabling deployment across a heterogeneous network

Enterasys Networks Matrix Switches
Enterasys' award-winning flagship switching solution-the Matrix family-is designed to fit in any environment and grow with the enterprise. From the workgroup to the wiring closet to the data center, the Matrix features an advanced, ASIC-based architecture to provide superior performance and support for future applications and services.

For the core and distribution layer, the Matrix N-Series is a family of powerful chassis-based switching solutions that scale to meet the largest user, application, and security demands. At the edge, Matrix C-Series are standalone and stackable switches that provide low-cost, high-quality Ethernet, Fast Ethernet, and Gigabit Ethernet switching to the desktop. All Matrix switches support critical features such as high-speed uplinks, RMON support, and at-a-glance port monitoring.

Features

  • Distributed Switching Architecture. Embedded switching on each module eliminates single point of failure and improves performance.
  • Layer 3/4 Classification. Switching, VLAN, prioritization, and filtering decisions can be based on network and application information.
  • Scalability. A switch fabric that uses high port density, distributed processing, distributed management, and ASIC designs allows expansion of switched networks without degrading performance.
  • Security. Policy management features allow for per-user and per-conversation control of the network, simplifying administration and reducing operational costs.
  • Manageability. Advanced features including per-port RMON, per-port user-level statistics, frame size and protocol breakdowns, error breakdowns simplify network management.
  • Fault Tolerance. Redundant power, cooling, and media links prevent network downtime.

Check Point Endpoint Security
Check Point Endpoint Security unifies the highest-rated firewall, antivirus, antispyware, network access control (NAC), and remote access VPN in a single, centrally managed client. Unification of these five essential endpoint security components protects organizations from the broadest range of endpoint threats, including confidential data theft, viruses, and host-based intrusions. Check Point Endpoint Security is the only solution that integrates both NAC for endpoint compliance and a remote access VPN client for secure remote access communications. The essential integration of the highest-rated defenses in a single, centrally managed client eliminates the need to deploy and manage multiple endpoint security applications. This increases the range of protection and reduces the overall total cost of ownership by reducing overhead and providing operational efficiencies like no other endpoint solution.

Benefits

  • Defeats malware to protect against new and old viruses targeting confidential enterprise data
  • Stops unsafe endpoints from infecting enterprise networks
  • Ensures the confidentiality of remote access communications
  • Enables simpler deployment of essential endpoint defenses and remote access capabilities
  • Reduces total cost of ownership and complexity of managing multiple endpoint defenses

ArrowMore on Enterasys