Palo Alto adds VPN gateway, traffic shaping to firewalls
Palo Alto Networks is adding an SSL VPN gateway and traffic shaping to its firewalls, offering businesses another opportunity to reduce the number of devices they buy and maintain.
While Palo Alto's previous software for its appliances supported site-to-site IPSec VPNs, it had no capacity to establish remote-access connections to individual users. PAN 3.0 software uploads SSL VPN agents to remote machines so they can establish VPNs with the appliances.
In combination with the software's existing features, customers can set policies that restrict remote users to accessing defined lists of applications. Previously, businesses that used Palo Alto's PA family of security appliances had to use a separate SSL VPN gateway if they wanted to provide SSL remote access.
The software release adds quality of service to the appliances by defining the bandwidth dedicated to certain applications and enforcing queuing policies. So a critical application could be guaranteed a certain minimum bandwidth and a place in a priority queue. Similarly traffic could be limited depending on who the user is or what his job function is.
By performing some of the functions of QoS devices, it gives customers an alternative to deploying separate QoS devices.
Palo Alto gear already supported a host of features including virus scanning, intrusion prevention and URL filtering, but the company says it's not trying to be a unified threat management (UTM) device. While the device performs many of the functions of UTMs, the company says its offering provides application visibility that UTMs don't and uses that ability to perform its other functions differently than mainstream UTMs.
PAN 3.0 software is available now and is an upgrade included with service contracts.
Network World
Sign up for ITworld's Daily newsletter
Follow ITworld on Twitter @IT_world
On Twitter now
firewall
Powered by Twitter
Esther Schindler
If the comments are ugly, the code is ugly
claird
SVG a graphics format for 21st century
pasmith
Take Chrome OS for a test spin
Sandra Henry-Stocker
Solaris Tip: Have Your Files Changed Since Installation?
jfruh
Android fragments vs. the iPhone monolith
mikelgan
What Gizmodo missed about the Pro WX Wireless USB disk drive
Sidekick: The Good News & the Bad News
Either way you look at it Microsoft Data Center management did not follow standards or best practices in this failure. In which case it makes me wonder more about the outsourcing of corporate data much less personal data.
- mburton325
Join the conversation here
Quick, practical advice for IT pros. Made fresh daily.
Want to cash in on your IT savvy? Send your tip to tips@itworld.com. If we post it, we'll send you a $25 Amazon e-gift card.
