|
|
|
ContentWatch Security Appliance Offers Filtering, Anti-malware
By: Matthew Sarrel
2008-12-04
Article Rating:  / 2
There are 0 user comments on this Network Security & Hardware story.
ContentWatch Security Appliance Offers Filtering, Anti-malware (
Page 1 of 2 ) ContentWatch's CP 300 security appliance offers very good content filtering, traffic shaping and anti-malware capabilities, as well as excellent reporting. It also integrates with directory services such as LDAP to let businesses enforce Internet usage policy by person. However, despite the strong security features, it still leaves some open holes, but what doesn't?Many businesses need to keep employees safe on the Internet and require solutions to monitor and, in some cases, block activity. The reasons vary: regulatory compliance, data loss prevention, information security policy and even HR policy.
A powerful driver for these solutions is the ability to limit or restrict bandwidth usage based on content categories or media type so that Jane in research can browse the Web looking for information on competitors' products, but Bob in accounting can't stream live video of the Victoria's Secret fashion show.
In this space, ContentWatch is offering a 1U (1.75-inch) appliance, the ContentProtect 300, that provides solid filtering and anti-malware protection. The CP 300 also integrates with various directory services.
There are a lot of options available in this market, ranging from simple URL filtering solutions to solutions bundled with other perimeter protection services such as anti-malware all the way up to UTM (unified threat management) offerings with full perimeter security. Which architecture appeals most to you will be dictated by your existing security solutions and whether you want to augment or replace them.
Historically, Web content filtering solutions relied on static lists of URLs that were pushed out by the provider much the way anti-virus signatures are. There are a number of drawbacks to this methodit only works with a frequently updated database (and no database of all the content on the Web can ever be completely up-to-date). There are also some easy ways around filters like this, such as using a "safe" domain (such as blogspot) to host "non-safe" content (such as pornography).
Click here to see an eWEEK Labs walk-through of the ContentProtect 300.
Therefore, good solutions not only filter on the text string of the URL but also conduct some sort of page-based content analysis on the fly. This analysis can be conducted on the actual device or somewhere out in the cloud. Administrators need to balance settings to provide enough protection while not scanning so deeply that the Web browsing experience is compromised.
Along with the filtering and anti-malware features, the ContentWatch CP 300 includes bandwidth management and application control. The integration with directory services such as LDAP allows businesses to set and enforce Internet usage policy by person rather than the usual way, which is by MAC or IP address. Rules governing content, application and bandwidth usage can be set for individuals and groups. Administration can be done via browser or SSH (Secure Shell), and larger organizations have the option of managing multiple ContentProtect boxes through a single interface.
I installed the CP 300 following the clearly written Quick Start guide, configuring it first from a workstation directly attached via cross-over cable and then moving it onto my Secure Web Gateway testbed to sit between the external firewall and the testbed's Ethernet switch. Ports are clearly labeled and located on the front of the unit. The device includes a hardware bypass so that network traffic continues to pass through it even if it fails. A helpful and informative wizard walked me through initial configuration, although I was disappointed that there was no way to configure SMTP authentication when configuring e-mail alerts.
|
|
�������x}iw㶲�D�wgV-ȶmtΜDHbL$%'ޗwOo*�ܴPtMwb["�P
B;� IiOH1�%3�t;D{{}.ЇP|o�S�o92t6O)L|@��ɠ#�ӱaGǵ�Hu#o8sh#�m�#XSKC(DžJ|��+{6{2q#gּkUMSNuq#���-ݾ��ඔ�k��:}rl
�ic'H
|'[oD'�QT�"*rp0@|Ӡd6�2X��c��]vlY*�E`KS�70���3��I_s;�j�\K}0�[-RF �J��pJq�䰉c<ش�6�,%̛�hJ@M2X�U��>hI,E[!fTLK$o�#���eF"`Q%u����
'�|�#8Jn.b?G�5�awWʲ9QY%�+K\M]�"G#-*�<Ǟϛ�]u/{]izMPqJ,0B- ]evb�cQWG5MGR>M獯fz\�CU9-|�Qnl�2X��bXvP7X[A^݇lA05t3c|>9Նm'!|�e��mx=Z.�3GS�4!>F�&
w|h�x:� }C
00gwk9�LP"wC h&r<�kIOlLJ.??6�
;
G`r��ɝ 5�y0�ݻCi`y1���y�jQ?]�*~s`�=w= H�
��X.�s�6G~>4-0����%6�q�0y�zD�أ���I.BD(ZH�B�!A�l~���[$p�X�V�(VR1i�JLO:Tv{B#LZ*=hƚTL٣XB�^�X/_��2әJRj2m8�V-&D7r"e�.G�7Kᙖ6Z=okVy
y=0f�ޅ3GBB63 �=gƠ�:�F'(��_G37u9\;*˗�ќ(,zn7MAR?�T�y
v
B�dj�/h~W.Y� �3EXVHdF!!
= \Pȭ�i;NrB@S*SNy�Vc$C V6_2���ӧ��L�ESr�����:w'Ne?z�L?ͺz+YF^u 9R@]օV�PK�� ��2%W��}kaԕ %/�E�A
n:bZ�G6�X�}iМ^&dTRs4�v;pl=5&5|n��V/U��WßB�XZ�rijXL[,D�1ȁ2n(�R&a+\ڨ�aOS�i9��Ezu@nzcg@>`3�ǟG
)a!��w1�(̕>E�XXfThjUVz
�Ä끈��f ���%�lDe@u\X:5u{qao/-*{5eWlH9�g$�A�YXG�&:=4̄�+ulZ'TMq�{;ڈy֚�o&rI)j$'�`�/#[յ�/Q�+gXs�t]Q[# X��1D:=���`�7uX87[͆OCBE-��Hx�
3??uPV����.sz-6S? !ܕV�����R53ghZlrKx8�J�REu�l{�� �Qքc'M}Xt|h�<�CX�&,��\$������ �m}�"T0�|*UT�ˈ`n�S@@k�SU�
Փ.ZE^~~�V�%Ŵ�谢��zt4ڣ�s!�a*/73 \�OgjZ(T+1:ʪZ��J:
_V�2�EV#l#�e{X�~\U4UeG¹5�`��Qе�a#E��Cf0%��P�"�7h{e�ejڳP��dwPJ v�|~KZh�H"D.Դ'*+&Uj l|��`Z:{>-L�H+��?Z0fϨ)lTcm/ kR9�Tʚj"�뵿KAG�^320"C�;�wF�!vƬY~
r?o |렀6RaMxޜ�9"zeaހWIl��J�hLwh^.Qm(}�n�L[to)wY{S+1~�z�,y6U�G�3��о�
M(�R!7uw@)&�
/��j�n��VJ��`DfaNg��GAM:w�s0U3fyr;ï�`ju
2�\3� ۹+b�*r6�_�?�M=�[L4�zɖ0g`'� ��Yn�AjAyI�d(L�?<�Yʹ;9Q#�߀&�?�08zGd�DRz+>n�~/I6�k��VRR�XU@V_A
ұg�/s_�5G=]y4sk'Si
l}KU�ה��Re�ɢ7)��V�C�i@/9�T3 fc>�/c�i�)T",߸X,W̱�g^`�.
JU-�lz�
�tѝxAc#&�a\khkc�}产Z"FT4�
Jx7
�\v
Zlm7
�
��Lqab;?ͥg7gkX> �B�55)��@u%hrGSq�{a\/;Cn/�$h@^�1M�u0@mL{%]Mk7. �y*1�a2I4ۄ
kni,: �a�T�Cnȣ[Y`'.ӪV�$,< ���<�d�U4^�U&.2��%SS]�<
��
�q俁rOn{W9Ѝ���Jj$·RiE�mT)玿ߓNtLÀ1zA�b�ȣ,z(�d�0rY��+`7�'�ʠ��K=� �j ;!�]DZq|V
n�&y/7:#{q O>*.Ϛ�1UɇݏgRx�i\[}dz�LR(��1I�1>dd˙](bo�gg56|n�
����$��r��Ӹ~ߺ�_>1i.R1~JdF1M�nn�
Nv�
?�s3�0i!�ܨe�n1�~KP .Mu?5Ro4�jG�Yk�.NEl�=O[�?qu#1a�Twݣd*
e~�=m0첰nIl�x4c�RLɔ&]I8�z>SB&T5˓$-I^O Eqj�i�e�ʒ��~(h'1ۡX#�ҡۓ�]5.G8
(OLkrwisy/Pys��yx�2iI�(5�~�� e!>�Ov�IJh�@J^KJPW:BR��0><)�'Tz�@+G"�=tӨaEbݙmb��i٣<8x�; v��;2x�;�zZ1�?ݞpne?�jw`{t;l-39&i
�ј@.5-ve鼳��2��>
�ACVorl8w@rs&�c��#Pf�p~n
֘@lll���4�RbhLpj9٢p��r[����0\k9f�>m`��\8V�c"OP>>Ш�{2TMٝ~l6ϵ�,��3�J23W!KjbX7�%3(Yz%.�ӻ�v"Zٖ
/Ed�ӘD+YmL�S5�|4>
�>şb�Z�0I�sd�D@1uAw
{�$$SqQJ:UҪ�a�/H1R#
!uY�3J/ �w�h_}*�)ب?'¶Xzq{M97%0xq�_fG7�k��%��:"M AH�vW4�y]؉ʒ
mk�[~qrb~_hg11I`Y�"H�}1ȄA^b8)�*aF.�EoSg\��")[/3*J�(u}�SrI7h��re`�I� 9J�*Vqˠ~T#rV㮸?]!eISQ!K�X)�7o*�q7W7W7W7WoWw�=�ƗxB�a�֓�|�x"��C�M�E3B-X�|__E|�'�>ٜ�|6{��9�a0�BZ@mIګ9zmn�v[?�@{�|gTi��[�a�V=zuc�")Qǀk_9,$E:�x?-IJ/2 �<1�كV_��%�A&x!T6�*F�PU�_^�I!~_ݒ/E`]�7m =�$Jtf`P��?J�$jpM]#D'!L�<ͪ�([&~=*%�DߒJ.O='Ԅ_aidM5�s%|uSy{sD%MQ�0�@_Q]y^h+��BʱL*���uv�o��@��ɰ���30^�g�^�MΏ]ґøyyyyy#Oa\P6OP\0H��L/d\�%B5c�B�8�3�+::fALGXP�t~��S���
�1,gp�2�pX땼�}-5 Q�|wLeO;�8Z6[�MQ* �!�@B�rA"/H&�{4mZ߶`7,�^�ɮs�}3*|:y1t/��!ݏ��~�=��0��~�{I�ϖ5N@q ӛfĮ+ݐ~)(��؋�_$7u���)*{� :8jַ~˅x{vI(�
ou0�m�w5g�,Z0Ĥ>$ד�,Y�
0�/B�P�bx>:BL4._]82��1;�G)L4�DѪl�_R#,4{ط3n�v+LUjW��Ұ]Ӎìo1�f 3 d@���V�{[_2Kf�o+}n&܀S)=h�wN�?8xa�ɑ;v�LOE�EկQpQZj3X�[�TkB�*K8_A9rO|k�vc?\((|mjm/
Q\ӽ67o[HvjmmZ/嵙��m{{�Ʒi�`�W۲:ư:m�/=ua�Y�mZ8Gg�]J6ec5>KsfLL�zl^�B�i��f-e։5V(��4TM��g5s+x�$([N0!P7z�b>8ZBO�b�A��|`߱1��W 8wiQO|e^_V3='�W-N��/*`5XN�ܓ�at�Wb%6Y~�gj�w �(��Qd�3�!̈�L�y�7*/>ĻnG�Gj�]=G?�@�(��Uo\kE_A-Ŵhgϡp"xė��q�V�xB�n8Ck�:�[-,QkO�u$v�y1�a䥒V,T˩7uz$
q�,�֠�K&��2Lt@Y>g�N((%vYm&0=�aL{G
)�8
�КXo�t �J G('~s8KQ�]iOM��L��SxvC�7�)(�ʁޒ�ߩq48yy�m@� "r?���I\_C9�խ��c�p�T`sr��d5B&t�8���7>|?_zyy`n�O�KZ��#a� kE���e��mDRPabcw�&"�=L#&|
�'m� ���Ѓx�m]16Faŷ^�(l8*wxc�| |�n~}}W@t Ԡ9vqY�@��y+��DL�͂`Aa~L#�qPP)awS0Z�qn�`�:>0"(S[��]ă0Lo38OqW'FgCj~ �`:�\�oN���*r ��P�PgA~n\b�@Ԕ0��(V$!Ѕ8�i,)@"!��9͉���k3'$G7Z��2N"0��
�Ka1c�~PoVR$4
>�(�3�ʰ�LXUK�ʟ7)^j�;eK2�q&Ӆ&JZ 0AV0`A-'i92fg4t\�K�r��M�o���
)nnI&5+h�93?@_k(^_~�JmdwQ__~�88kfBsy�~CgG(_֗rYF9?ϴ.3ʡ�z�埡6og�mWdO���w�~;��~:�;��}v2�ɠOˌ_~O��P~Q�(GFy�;�0�{ s?0�ׅw3�͐?]/�r�qA�WU@?�Ӄ2߃2�g_�(e}G� ?e>e�S�n&�&~oon2/$)C�Ay#�Wpz~;"9(/'�R*z�U�KC(ϐge�3�Vn�a�{r!Wgˀ^�� k{\W�KM0TntEճKL7cn%:�v��^_�t�qLw<_[nNJ>s\�ȜH8V0'f[�!N�G"\�5½p'�e�b�AzI[��xwi0> ۓ{� �ݯ�pmఫPy{%s%>�|
SG0��ӚܴO28ŭhg?>/�ydֺWWV�Wl�NA6KֿL^��'K�j*8�5ߜ:R��Nw��}Y&ƀY8'}p)N�!45D�=C>jp�O_i{�sn ߛ8�,@�,��Hj$·RiE�rT)玿ߓN�xRp@Dd��k�jJ]N�-aX��,.g
�/(�@#غM{%}C7<8fȳRLq�
u+�J�!'\B�x�km&۫2�dof�2
`dQKp^'Wv�Ő�@0E�{,�(�s��T[\F�l��BCV��x?3�ϩ�^oc¥��6�%dή�1vk�C'�]NL,ɳi
=�3Εq�
Ʊ�تG�Шs�wӦ�B�~��` ̀tW�HGO]�.LESzq�;»78��,_bY\[0H�1�%Nؒ1"�QSRۨWH�H:�tH-�6zw��#�KzU�:�h0(
8�[]^�H�
pG�1�Q�.`ӳbJ%"+ƍQge
̸Ưc��>DL6&B�>��QK�֠}ֽ�F��Fo"9 ţ*aс(Y�c{XnDh/ܝSVܩ
�-�g�)�nkͅc[8
��g[=Ǚې
i_ݨ3.K5 X 9c2K'��O�9ٝ/fRx�Y��|1�'~#�pIi/�0S\,�1^ }�D亂mv���K_1mӞ?]��̯v�칸9D�^��&dϒW�[l,��)1�{��;KH.\L�SϮݝ)ga��%NAFWd]$� A_$|NbOh6)*3Up6
i�4!�J _ r:'쭰F����|m'�m]1SSFӺn݉W݈?&.u (OP"Sq}(!1q,R2GdYd�,Xg7䰴AijkA/?muI3軱fKNvޒ{־(� ;C��~�EE�]e�D$@�
�߅/n�S�c����A{禍W~/;vc�3)f���GNFp)N�<}q?٢�uK�ğopm�.�;�+C��O1ΪT�m*>`H6A1^^|˼+AўY�nw0w>L��/#]ZD&+8~m=au{+U�rcd+�{f�:ePEX�l'�ᠢKW5`/��9H�]�r78ǩ3b�hvq#b� �u�u+y!.��1�: .X=lQ#hݴ+`�jk�7D]YtAw{�BTؕc<��Xè+�7q;s�[__38V0�|6,�l�p/>&Ǹ[�0tczw^=Wg[8K cd.
,�$8jVI�{{a0��&iE-㨤t`C
v�_ʉ~ph;?�҈>A� wVǰ�>BO�So��O80�Ux|�-h\�};}xX���˩>c1�}p1�LX�+0_�k��ASs�DeU��|tCGYEL`&;]+�NJ�9=O9*�R$L0M���Är"5poq-ye��יH��pK��8
g!0X^�XpTT��/D4;NB}aE�tiOR<'\B�;�W��?�bMd�n.]7�,{ٗ�V��$g~�V�;~v��?;~m a�%
ѨT\��4[/G+Ou��
-}tKO��_w?^IaE�y鑢%!tϚi��B"E�w8;k]OVz
S_%ȕ/�2f#x�oU��AFMZ%�Nb�i~ۊX�#iQf�rYO�bե{l'�uE^�'e1TUd%r�R�K+E4>�!an;6�6BJF:6L]_�[�
P�"-��
|
Network Security & Hardware 
