NetContinuum adds network firewall to NC-1000

Web application firewall maker NetContinuum has added network firewall features to the latest version of its NC-1000 Web Security...

Web application firewall maker NetContinuum has added network firewall features to the latest version of its NC-1000 Web Security Gateway.

NC-1000 version 4.0 lets customers use a single device to stop network attacks using common protocols such as file transfer protocol and domain name system, in addition to those targeting web applications communicating over server port 80.

It can  be deployed at the network perimeter, between the internet and a company's web applications. Incoming network and application-specific traffic pass through the NC-1000, which will apply traditional stateful inspection and so-called "deep inspection" features to monitor network connections and dig into data packets, spotting hidden attacks or malicious code.

Previously, the NC-1000 only functioned as an application firewall and was typically deployed behind a second network firewall located at the network perimeter. By consolidating those two functions onto one device, the latest version will reduce the cost and administrative overhead needed to secure web applications, said NetContinuum vice president of marketing Wes Wasson.

However, the new device is not intended to replace an organisation's enterprise firewall, which protects its Lan.

Traffic to and from a company's web applications will pass through the NC-1000, which compares that traffic with a dynamic profile of legitimate behaviour for those applications, blocking improper requests. Administrators can create a "virtualised firewall" for each application the NC-1000 protects, with a unique set of policies for that, specifying which ports and network protocols can be used, Wasson said.

Administrators can also set up web access control lists, or WACLs, which are similar to the access control lists (ACLs) used by traditional network firewalls, which permit traffic from an approved set of connection sources.

WACLs allow organisations to accept or reject traffic by comparing information obtained from a deep inspection of the packet, including data on URLs (uniform resource locators), message content or form field values, against a list of approved content for that application.

The addition of integrated network firewall features may appeal to organisations that have deployed web applications but are wary of using firewalls because of fears that they will slow traffic to and from their network, according to Eric Ogren of the Yankee Group.

The NC-1000's application specific integrated circuit (ASIC) may allow some of those organisations to add network and application security without compromising performance. That would appeal to organisations that want to use the web to deliver streamed media, which is sensitive to slow-downs, Ogren said.

Companies selling web application firewalls, such as NetContinuum, KaVaDo, Teros and Sanctum stand to benefit as more companies turn to the web to sell their wares and offer services such as banking and retirement planning to their customers, Ogren said.

The NC-1000 Version 4.0 will be available as a free software upgrade to existing NC-1000 customers. For new customers, the NC-1000 will be available in January and will sell for $28,000.

Paul Roberts writes for IDG News Service

Read more on IT strategy