ForeScout Virtualizes NAC Appliance -- Campus Technology

Cybersecurity

ForeScout Virtualizes NAC Appliance

By Dian Schaffhauser
06/07/11

A company with a security appliance for network access control has just released a version that runs in virtual environments. ForeScout Technologies, which sells CounterACT in appliance form, is now making the same functionality available as a virtual appliance for VMware.

The hardware-based ForeScout CounterACT monitors network traffic to discover network devices, including virtual guest machines; build an inventory of device characteristics; and enforce policies configured by the security administrator. Because its monitoring is run "out-of-band," as a separate datastream, the problems of network latency and the possibility of turning into a single point of failure are minimized.

According to the company, the virtual appliance performs identically to the physical appliance. Both can operate together and be centrally controlled by ForeScout CounterACT Enterprise Manager, a console management application that can monitor 200,000 devices. The virtual appliance runs as a VMware guest virtual machine on VMware ESX 3.5 and 4.x.

The functionality of both editions of CounterACT includes:

Providing visibility to all users, devices, and applications in use on the network;
Identifying security gaps;
Automating guess user access;
Blocking rogue devices and unauthorized programs; and
Blocking attacks inside the network.

According to Gartner, by 2015, 40 percent of the security controls used within enterprise data centers will be virtualized.

"The move to virtualize security controls reduces barriers to adoption. Rather than [sprinkling] a few physical appliances here and there based on network topology, we can now place controls when and where they are needed, including physical appliances as appropriate," said Neil MacDonald, vice president and Gartner fellow in a November 2010 Gartner report. "Leading security vendors will focus on the security services provided and offer multiple implementation alternatives--physical, virtual, and cloud-based, as well as hybrid combinations that are controllable by a consistent management framework and policies."

About the Author

Dian Schaffhauser is a former senior contributing editor for 1105 Media's education publications THE Journal, Campus Technology and Spaces4Learning.

E-Mail this page

Printable Format

Featured

Meta Forms 'Superintelligence Group' to Pursue Artificial General Intelligence

Meta CEO Mark Zuckerberg is assembling a new team focused on achieving artificial general intelligence (AGI), amid internal dissatisfaction with the performance of its current AI offerings. The team, known internally as the superintelligence group, is part of a broader effort to enhance Meta’s AI capabilities.
Training the Next Generation of Space Cybersecurity Experts

CT asked Scott Shackelford, Indiana University professor of law and director of the Ostrom Workshop Program on Cybersecurity and Internet Governance, about the possible emergence of space cybersecurity as a separate field that would support changing practices and foster future space cybersecurity leaders.
Complete College America Launches Center to Boost Data-Driven Student Success Strategies

National nonprofit Complete College America (CCA) recently launched the Center for Leadership, Institutional Metrics, and Best Practices (CLIMB), with the goal of helping higher education institutions use data-driven strategies to improve student outcomes.
Report: Enterprises Embracing Agentic AI

According to research by SnapLogic, 50% of enterprises are already deploying AI agents, and another 32% plan to do so within the next 12 months..