Feeds

Cisco beefs up IOS security

Minor milepost in self-securing network drive

  • alert
  • submit to reddit

Secure remote control for conventional and virtual desktops

Cisco Systems has launched a range of products to ward off security threats.

An upgrade to Cisco core IOS Software (Release.12.3T) should make networks more resilient to malicious attacks. New features include the ability to more easily segment networks into trusted zones. Also, it is now easier to identify the source of DDoS attack traffic, using Cisco IP Source Tracker. And improved support of the Extended Simple Mail Transfer Protocol makes it easier to inspect mail traffic for malicious code.

Cisco has added support to the next generation net traffic standard, IPv6, to its popular PIX range of firewalls. Rivals Check Point and NetScreen both added IPv6 support some time ago.

On the hardware front, Cisco has introduced the Cisco 7301 Router and Cisco VPN 3020 Concentrator. These appliances promise performance improvements of Cisco's existing range of secure router and VPN kit plus support for Cisco Security Device Manager, a management product designed to make setting up secure networks more straightforward.

The products are available now; prices are listed here.

Networks, heal thyself

Yesterday’s announcements represent the latest milepost in Cisco's Self-Defending Network. This is its strategy to improve the ability of networks to autonomously identify, prevent and adapt to a range of security threats.

The latest updates are geared towards adapting to security threats. Preventing attacks in the first place falls within the remit of Cisco Security Agent (CSA), the host-based intrusion prevention software inherited through last year's acquisition of Okena.

CSA protects corporates against worms such as Blaster and Nimda, and is positioned as a supplement to existing AV software and as a replacement for desktop firewalls. Cisco consultant Paul King told El Reg that the technology is not ready for consumers, because deployments must be carefully set up and managed. However punting the technology towards small and medium-sized businesses is very much part of Cisco's plans.

It is talking to ISPs about licensing the technology as a security add-on the business broadband connection packages. But no deals yet. ®

Related stories

Cisco combats network worms
Cisco launches security blitz
Cisco buys behaviour blocker
IPv6 Task Force UK works on five-year plan

Top 5 reasons to deploy VMware with Tegile

More from The Register

next story
NSA SOURCE CODE LEAK: Information slurp tools to appear online
Now you can run your own intelligence agency
Azure TITSUP caused by INFINITE LOOP
Fat fingered geo-block kept Aussies in the dark
Yahoo! blames! MONSTER! email! OUTAGE! on! CUT! CABLE! bungle!
Weekend woe for BT as telco struggles to restore service
Cloud unicorns are extinct so DiData cloud mess was YOUR fault
Applications need to be built to handle TITSUP incidents
BOFH: WHERE did this 'fax-enabled' printer UPGRADE come from?
Don't worry about that cable, it's part of the config
Stop the IoT revolution! We need to figure out packet sizes first
Researchers test 802.15.4 and find we know nuh-think! about large scale sensor network ops
Turnbull should spare us all airline-magazine-grade cloud hype
Box-hugger is not a dirty word, Minister. Box-huggers make the cloud WORK
SanDisk vows: We'll have a 16TB SSD WHOPPER by 2016
Flash WORM has a serious use for archived photos and videos
Astro-boffins start opening universe simulation data
Got a supercomputer? Want to simulate a universe? Here you go
prev story

Whitepapers

Driving business with continuous operational intelligence
Introducing an innovative approach offered by ExtraHop for producing continuous operational intelligence.
Why CIOs should rethink endpoint data protection in the age of mobility
Assessing trends in data protection, specifically with respect to mobile devices, BYOD, and remote employees.
Getting started with customer-focused identity management
Learn why identity is a fundamental requirement to digital growth, and how without it there is no way to identify and engage customers in a meaningful way.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Simplify SSL certificate management across the enterprise
Simple steps to take control of SSL across the enterprise, and recommendations for a management platform for full visibility and single-point of control for these Certificates.