Cisco sacrifices iron, pushes gateway protection into cloud

Cisco decided that the perimeter of the network is the wrong place for a Web gateway, so it is floating in the cloud.

Switchzilla, yielding to the inevitable decomposition products in the software, mocks the hardware gateways as insufficient and uncertain as the launch party for its new "umbrella" product.

As a secure cloud-based Internet Gateway (SIG) umbrella "stop" blocks current access and threats across all ports and emerging protocols for the most comprehensive coverage. It is malicious for domains, URLs, and prior files That a connection or a file is to be downloaded.

That said, Cisco umbrella because the typical proxy bandwidth inspection scope (to quote the White Paper Paper download) gives an overview of web-based threats to ports 80 and 443, and only selections do things like returns Of command call and malware control.

Umbrella is, in essence, Cisco's Web application protection software integrates its acquisition in 2015 OpenDNS.

There are two other issues that society considers to be out of a product deployed at the gateway of the company: companies "trombone" more traffic to its branch to the central office for Internet access; And people working remotely will probably not VPN to the central office for Internet access.

For both use cases, Cisco believes that the loss of bridge transparency is the answer. Instead of users suffering from the loss of boarding performance of all their traffic by the central office, umbrellas decentralize the security services they need.

Here is the list of Cisco check boxes offered for umbrellas:

• "Visibility and application inside and outside the corporate network, even when users are outside the VPN and not all network traffic back to the corporate network;
• "Threat protection across all ports and protocols;
• "On the basis of Web proxy traffic inspection and inspection files with the AV engines test zone and behavior;
• "Live threat intelligence derived from global Internet activity is analyzed in real-time, with updates applied everywhere in minutes;
• "Open platform with a bidirectional API to integrate with your existing security stack;

Discovery and control of SaaS applications.

SaaS discovery comes through integration with the Cisco CloudLock platform.

To make the implementation seamless for users, Umbrella uses anycast "routing every data center advertisement of the same IP address so that requests are sent seamlessly to the fastest available with automatic failover to maintain the time of 100% activity.

Not to mention that it is much easier for direct users through a security system through DNS addressing to ask them to remember to click on a VPN before the application to connect.