Feeds

A10 ships new iron, OS

Layer 4 connections per-second-per-Watt as a measure of green, anyone?

Internet Security Threat Report 2014

A10 Networks has announced new gateway devices and a revision to its ACOS operating system.

The three new chunks of metal are the 6430 / 6430S (same unit, with and without SSL support) and the half-the-power, half-the-price 5430S.

A10's director of product marketing Paul Nicholson introduced El Reg to yet another measure of green-ness, the number of Layer 4 connections per second per Watt it will support, a measure that seems to have less-than-ubiquitous support.

However, some of the measures in the Thunder kit come more readily to hand: the 6430S supports 150 Gbps throughput, handles 5.3 million Layer 4 connections per second, and has enough grunt to handle 1,024 tenants. The SSL-supporting version can run more than 130,000 new SSL connections per second.

For those without the $US229,000-plus (add $US40,000 to include SSL), the 5430S is a fifty-fifty tradeoff, with performance and price both more-or-less halved: 2.8 million layer 4 connections per second, and 67,000 SSL CPS at $US139.995.

The other thing the company is keen on pointing out is the small form factor, with the 6430 a single RU high. Nicholson also pointed to the “no moving parts” philosophy – or nearly none, and the fans are fully hot-swappable.

For DDoS defence, the 5230S unit claims the capacity to get in the way of 113 million SYN cookies per second, while the 6230S stops 212 million.

That feature, along with the new Web application firewall capabilities and authentication services, have been added to the A10 ACOS operating system with no extra license fees.

The authentication services, Nicholson said, are designed to simplify cases such as where different security is applied to internal and external users – such as a company Wiki, where someone outside the firewall has to authenticate, but not someone connected to the corporate LAN.

Authenticating at the Wiki's server, he pointed out, presents a risk, since if there's a vulnerability on the server, it's exposed to the outside world. So A10's position is that if the user has to authenticate to get past the Thunder device, they never get as far as the server.

“You're shifting the authentication away from a Web server's known exploits”, he told The Register. ®

Choosing a cloud hosting partner with confidence

More from The Register

next story
NSA SOURCE CODE LEAK: Information slurp tools to appear online
Now you can run your own intelligence agency
Azure TITSUP caused by INFINITE LOOP
Fat fingered geo-block kept Aussies in the dark
Yahoo! blames! MONSTER! email! OUTAGE! on! CUT! CABLE! bungle!
Weekend woe for BT as telco struggles to restore service
Cloud unicorns are extinct so DiData cloud mess was YOUR fault
Applications need to be built to handle TITSUP incidents
Stop the IoT revolution! We need to figure out packet sizes first
Researchers test 802.15.4 and find we know nuh-think! about large scale sensor network ops
Turnbull should spare us all airline-magazine-grade cloud hype
Box-hugger is not a dirty word, Minister. Box-huggers make the cloud WORK
SanDisk vows: We'll have a 16TB SSD WHOPPER by 2016
Flash WORM has a serious use for archived photos and videos
Astro-boffins start opening universe simulation data
Got a supercomputer? Want to simulate a universe? Here you go
Do you spend ages wasting time because of a bulging rack?
No more cloud-latency tea breaks for you, users! Get a load of THIS
prev story

Whitepapers

Free virtual appliance for wire data analytics
The ExtraHop Discovery Edition is a free virtual appliance will help you to discover the performance of your applications across the network, web, VDI, database, and storage tiers.
Getting started with customer-focused identity management
Learn why identity is a fundamental requirement to digital growth, and how without it there is no way to identify and engage customers in a meaningful way.
The total economic impact of Druva inSync
Examining the ROI enterprises may realize by implementing inSync, as they look to improve backup and recovery of endpoint data in a cost-effective manner.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Website security in corporate America
Find out how you rank among other IT managers testing your website's vulnerabilities.