Palo Alto adds VPN gateway, traffic shaping to firewalls
Palo Alto Networks is adding an SSL VPN gateway and traffic shaping to its firewalls, offering businesses another opportunity to reduce the number of devices they buy and maintain.
While Palo Alto's previous software for its appliances supported site-to-site IPSec VPNs, it had no capacity to establish remote-access connections to individual users. PAN 3.0 software uploads SSL VPN agents to remote machines so they can establish VPNs with the appliances.
In combination with the software's existing features, customers can set policies that restrict remote users to accessing defined lists of applications. Previously, businesses that used Palo Alto's PA family of security appliances had to use a separate SSL VPN gateway if they wanted to provide SSL remote access.
The software release adds quality of service to the appliances by defining the bandwidth dedicated to certain applications and enforcing queuing policies. So a critical application could be guaranteed a certain minimum bandwidth and a place in a priority queue. Similarly traffic could be limited depending on who the user is or what his job function is.
By performing some of the functions of QoS devices, it gives customers an alternative to deploying separate QoS devices.
Palo Alto gear already supported a host of features including virus scanning, intrusion prevention and URL filtering, but the company says it's not trying to be a unified threat management (UTM) device. While the device performs many of the functions of UTMs, the company says its offering provides application visibility that UTMs don't and uses that ability to perform its other functions differently than mainstream UTMs.
PAN 3.0 software is available now and is an upgrade included with service contracts.
Network World
Sign up for ITworld's Daily newsletter
Follow ITworld on Twitter @IT_world
On Twitter now
firewall
Powered by Twitter
jfruh
New Macxplosion: iMacs, minis, Macbooks, Magic Mouse!
mulderjoe
BlackBerry Storm 2: Is it worth the upgrade?
pasmith
Microsoft locking out unauthorized Xbox 360 storage devices
Markus Jakobsson
Experimenting on Mechanical Turk: 5 How Tos
Esther Schindler
The Decline and Fall of the Idealistic Spark
sjvn
Windows unsafe for online banking? Shopping?
mikelgan
In search of the ultimate temporary office
David Strom
Thirty years of spreadsheets
Sidekick: The Good News & the Bad News
Either way you look at it Microsoft Data Center management did not follow standards or best practices in this failure. In which case it makes me wonder more about the outsourcing of corporate data much less personal data.
- mburton325
Join the conversation here
Quick, practical advice for IT pros. Made fresh daily.
- Windows 7 upgrade: What you can, can't, and should do
- Don't call it brainstorming: 10 tips for better innovation
- More...
Want to cash in on your IT savvy? Send your tip to tips@itworld.com. If we post it, we'll send you a $25 Amazon e-gift card.
