ForeScout Virtualizes NAC Appliance

  • By Dian Schaffhauser
  • 06/07/11

A company with a security appliance for network access control has just released a version that runs in virtual environments. ForeScout Technologies, which sells CounterACT in appliance form, is now making the same functionality available as a virtual appliance for VMware.

The hardware-based ForeScout CounterACT monitors network traffic to discover network devices, including virtual guest machines; build an inventory of device characteristics; and enforce policies configured by the security administrator. Because its monitoring is run "out-of-band," as a separate datastream, the problems of network latency and the possibility of turning into a single point of failure are minimized.

According to the company, the virtual appliance performs identically to the physical appliance. Both can operate together and be centrally controlled by ForeScout CounterACT Enterprise Manager, a console management application that can monitor 200,000 devices. The virtual appliance runs as a VMware guest virtual machine on VMware ESX 3.5 and 4.x.

The functionality of both editions of CounterACT includes:

  • Providing visibility to all users, devices, and applications in use on the network;
  • Identifying security gaps;
  • Automating guess user access;
  • Blocking rogue devices and unauthorized programs; and
  • Blocking attacks inside the network.

According to Gartner, by 2015, 40 percent of the security controls used within enterprise data centers will be virtualized. 

"The move to virtualize security controls reduces barriers to adoption. Rather than [sprinkling] a few physical appliances here and there based on network topology, we can now place controls when and where they are needed, including physical appliances as appropriate," said Neil MacDonald, vice president and Gartner fellow in a November 2010 Gartner report. "Leading security vendors will focus on the security services provided and offer multiple implementation alternatives--physical, virtual, and cloud-based, as well as hybrid combinations that are controllable by a consistent management framework and policies."

About the Author

Dian Schaffhauser is a former senior contributing editor for 1105 Media's education publications THE Journal, Campus Technology and Spaces4Learning.

Featured

  • AI robot with cybersecurity symbol on its chest

    Microsoft Adds New Agentic AI Tools to Security Copilot

    Microsoft has announced a major expansion of its AI-powered cybersecurity platform, introducing a suite of autonomous agents to help organizations counter rising threats and manage the growing complexity of cloud and AI security.

  • modern college building with circuit and brain motifs

    Anthropic Launches Claude for Education

    Anthropic has announced a version of its Claude AI assistant tailored for higher education institutions. Claude for Education "gives academic institutions secure, reliable AI access for their entire community," the company said, to enable colleges and universities to develop and implement AI-enabled approaches across teaching, learning, and administration.

  • central cloud platform connected to various AI icons—including a brain, robot, and network nodes

    Linux Foundation to Host Protocol for AI Agent Interoperability

    The Linux Foundation has announced it will host the Agent2Agent (A2A) protocol project, an open standard originally developed by Google to support secure communication and interoperability among AI agents.

  • open laptop in a college classroom with holographic AI icons like a brain and data charts rising from the screen

    4 Ways Universities Are Using Google AI Tools for Learning and Administration

    In a recent blog post, Google shared an array of education customer stories, showcasing ways institutions are using AI tools like Gemini and NotebookLM to transform both learning and administrative tasks.