Cisco Integrates Security Features Into Catalyst Switches

Integrating high performance firewall, VPN, SSL and network analysis modules into the network core provides more comprehensive security than edge appliances, said Ben Goldman, director of product marketing at Cisco's Internet Systems Business Unit.

The new modules complement Cisco's current intrusion-detection and content switching modules, Goldman added.

John Freres, president of Schaumburg, Ill.-based network and security solution provider Meridian IT Solutions, said it's a timely move for Cisco. "Infrastructure and security are merging together," he said. "Cisco is dominant in infrastructure, but not security."

Freres added that as critical applications such as voice, video and storage merge into the network, security becomes more important. "Integrating security services into the network builds in a redundant level of protection touching all network traffic," he said. "There is no one single point of failure."

id
unit-1659132512259
type
Sponsored post

Freres said the modules will provide a lot of opportunity to upgrade current Catalyst 6500 users. "There is a very, very large installed base of Catalyst 6500 customers," he said. "Most of these companies have a firewall and VPN strategy, but they don't have a fully integrated security solution."

The Catalyst 6500 Firewall Services Module delivers 5-Gbps throughput and 100,000 connections per second, with integrated stateful inspection up to Layer 7, Goldman said. Up to four modules can be integrated into a single 6500 chassis to scale to 20-Gbps throughput and 400,000 connections per second. Slated to be available in September, the module lists for $34,995.

Available now, the Catalyst 6500 IPSec VPN Services Module provides 1.9-Gbps 3DES encryption per module and 8,000 concurrent tunnels. The module lists for $35,000.

Available in September, the Catalyst 6500 SSL Services Module provides 2,500 connections per second and 300-Mbps SSL encryption. It lists for $29,995.

The Catalyst 6500 Network Analysis modules, NAM-1 and NAM-2, deliver up to 1-Gbps monitoring to detect traffic anomalies. Both available now, NAM-1 lists for $17,995 and NAM-2 lists for $29,995.