Cisco boosts its security offerings

Networking giant Cisco Systems has announced new software for its Pix Firewall platform and extended the hardware options...

Networking giant Cisco Systems has announced new software for its Pix Firewall platform and extended the hardware options available.

The news comes as Cisco endeavours to expand its popular security and intrusion-detection tools to deal with growing traffic and new ways of using data networks. As part of the software upgrade Cisco has also introduced software features for securing IP phone calls and multicast traffic.

"While we're trying to secure the network, the network's getting more diverse all the time," said Mike Volpi, senior vice-president of Cisco's Internet Switching & Services Group.

In addition to supplying the routers and switches used in many enterprise networks worldwide, Cisco offers several tools to keep those networks secure. They include the Pix firewalls, a software router integrated with its router software, and an appliance built for virtual private network (VPN) termination. For intrusion detection, Cisco offers a standalone appliance, a hardware module for Cisco Catalyst 6000 switches and a software product.

Version 6.2 of the Pix Firewall Operating System will allow firewalls at remote sites to serve as end points of a VPN and automatically download new configurations and policies as VPN tunnels are established, said Richard Palmer, vice-president and general manager for VPN & Security Services at Cisco. This will make it easier for large enterprises to deploy thousands of firewalls across an organisation, he said.

The software upgrade also adds features to help the firewalls secure voice traffic that uses the H.323v2 protocols and Session Initiative Protocol (SIP). In addition, support for a function called Stub Multicast Routing will allow customers to securely use multicasting, a bandwidth-conserving way of sending one stream of data to many places, according to Cisco.

Cisco's new Pix 506E and 515E firewalls are similar to the outgoing Pix 506 remote-office firewall and Pix 515 for small and medium-sized businesses, but with much higher throughput, according to Cisco. Added processing power enables the new models to achieve up to two and a half times the maximum data throughput of the previous models. Pix 515E models can also be purchased with integrated hardware-based acceleration of VPN functions, boosting VPN speed while offloading work from the firewall's central processor.

The Pix 506E and 515E firewalls are available now, priced from $1,695 (£1,187) for the 506E and $3,495 (£2,448) for the 515E. Version 6.2 of the Pix operating system will be available by the end of this quarter and is free to customers with a current Cisco Smartnet contract.

Read more on IT for small and medium-sized enterprises (SME)