Introduction
A virtual private network (VPN) is private network that uses a public network (usually the Internet) to connect remote sites or users together. Instead of using a dedicated, real-world connection such as leased line, a VPN uses "virtual" connections routed through the Internet from the company's private network to the remote site or employee.
VPN Solution:
Remote Access: a user-to-LAN connection used by a company that has employees who need to connect to the private network from various remote locations. (e.g., employees want to access to the company’s file servers or send/receive email through the company’s internal mail servers.
Site To Site: Through the use of dedicated equipment and large-scale encryption, a company can connect multiple fixed sites over a public network such as the Internet. Suppose two branches of a company, one in Vietnam and the other in Singapore, want to connect together for information sharing. A VPN site-to-site to connect the two branches will be established for secure communications and efficiency.
Intranet/Internal VPN: If a company has one or more remote locations that they wish to join in a single private network, they can create an intranet VPN to connect LAN to LAN.
Introduction
Cisco Network Admission Control (NAC) allows administrators to authenticate users who wants to join onto the network. NAC also identifies compliant and trusted endpoint devices, such as laptops, desktops and PDAs, onto the network. Cisco NAC gives organizations a powerful, roles-based method of preventing unauthorized access and improving network resiliency.
NAC Functions
Cisco NAC Appliance is an end-to-end network registration and enforcement solution that allows network administrators to authenticate, authorize, evaluate, and remediate users and their machines prior to allowing users onto the network:
- Recognizes users, their devices, and their roles in the network. This first step occurs at the point of authentication, before malicious code can cause damage.
- Evaluates whether machines are compliant with security policies. Security policies can vary by user type, device type, or operating system.
- Enforces security policies by blocking, isolating, and repairing noncompliant machines. The machines are redirected into a quarantine area, where remediation occurs at the discretion of the administrator.
Cisco NAC Appliance can apply posture assessment and remediation services to all devices, regardless of:
Device type. Cisco NAC Appliance can enforce security policies on all networked devices, including Windows, Mac, or Linux machines; laptops; desktops; personal digital assistants (PDAs); and corporate assets, such as printers and IP phones.
Device ownership. Cisco NAC Appliance can apply security policies to systems owned by the corporation, employees, contractors, and guests.
Device access method. Cisco NAC Appliance applies network admission control to devices connecting through the LAN, WLAN, WAN, or VPN.
Cisco NAC Appliance is unique in its ability to enforce policies for all operating scenarios without requiring separate products or additional modules.
Networks with Cisco NAC Appliance primarily benefit from:
Healthy networks as a result of making compliance a condition of access
Proactive prevention of viruses, worms, spyware, and other malicious applications.
Minimized vulnerabilities on user machines through periodic evaluation and remediation.
Significant cost savings by automating the process of repairing and updating user machines.
Introduction
Business networks of all sizes now face increasingly sophisticated attacks that can impede productivity, obstruct access to applications and resources, and cause significant communications disruption.
Cisco Intrusion Prevention System (IPS) provides end-to-end protection for your network. This inline, network-based defense can identify, classify, and stop known and unknown threats, including worms, network viruses, application threats, system intrusion attempts, and application misuse.
Cisco IPS Sensors and Cisco IPS Sensor Software deliver high-performance, intelligent detection with precision response, from the network edge to the data center.
IPS Functions
Cisco IPS delivers continuously updated, comprehensive, and accurate detection technology to identify and block fast-moving and emerging threats before they damage your computing assets.
Counteract malicious traffic such as worms, viruses, malware, DoS attacks and application-based attacks before they affect your business.
Build and expand network security. IPS helps prevent threats for the network from applications and Address Resolution Protocol.
Cisco IPS provides a variety of security levels, including group attacks and individual attacks. Cisco IPS is able to learn network administrators reactions to attacks and then update such remediation for the network.
Cisco IPS technologies and services developed by Cisco worldwide security experts are always updated continuously into Cisco devices.
Cisco Intrusion Prevention System provides end-to-end protection for your network and deliver high-performance, intelligent detection with precision response, from the network edge to the data center.
Cisco IPS collaborate and adapt in real time to emerging threats and "learns" the topology, configuration and behavior of your environment.
Cisco IPS collects a series of behaviors and complex tasks as required configuration such as to delete file packages and to abort remote connections or to limit the use of servers and to protect applications on the network.
Cisco IPS possibly protects the network from high threats and offers priority configuration towards emerging threats.
Cisco IPS possibly records information on attacks and network administator’s behavivours during before, ongoing and after the attacks.