Easy to Block External Enemies While Difficult to Catch Internal Threats

After setting multiple defending lines to block external threats like virus/worms/hackers/spam, many computers in organizations will still be infected with virus due to the prevailing wireless access from notebooks. The internal computers will infect each other and bomb the L2/L3 switches to shut the network. Finding the failure point has been the most painful task for network administrators. They often need to be awake in the midnight to monitor the network conditions. When some virus is prevailing, they have to check the computers across departments. Plugging and unplugging of the wires to find the virus source has already been the most effective method they used to know.

Global Leader in Co-Defense

Most large organizations have already deployed anti-virus gateways or intrusion prevention systems. However, they lack co-defense machanism to co-ordinate existing security framworks. L7 Networks is a leading vendor to cowork with leading virus sensors, such as Juniper/Fortinet/McAfee, and leading switch vendors, such as Cisco/D-Link/Acaltel/Extreme. During the early stage of discoverying the virus, the sensors's message can be automatically transformed into locker's ACL according to the pre-defined InstantLock policy rules. Subsequently, the issued ACL can prevent internal threats from infecting other computers or shutting the networks. Co-Defense not only minimize the total cost of ownership (TCO) for security devices, but it also minimize the number of infected internal computers. Thereby, network administrators may have much fewer infected computers to solve, while the interrupt by virus for employees will also be minimized. Otherwise, virus will not only destroy more and more data in the internal network, but it will also cause a huge waste of human resources.

Detailed Policy Configuration to Minimize False Locks

False alarm has been the most painful thing of IPS/IDS administrators. To minimize the false alarm, false locking of switches, and subsequent complains from the employees, InstantLock has listed most Juniper/Fortinet/McAfee events for administrators to choose. Since it is a very annoying task for administrators to listen to the complains from the locked employees, InstantLock has a built-in bulletin board for employees to query the reasons to be locked. InstantLock also lets the employees to manually unlock themselves. Moreover, InstantLock can automatically unlock the employees after a specified time so as to let the locked employee to unlock herself/himself after self-healing.

Multiple Deployment Modes: Alliance vs. Sniffing vs. Inline

Co-Defend by Alliance: This mode is done by making Juniper / Fortinet / McAfee devices to send out syslogs to InstantLock, thereby the InstantLock will check the policy rules and then issue the ACL to the supported Cisco / Extreme / D-Link / Alcaltel L2/L3 switches.

Optional IPS/IDS and Centralized Management Module to Minimize TCO

For those organizations that have not deployed IPS/IDS, InstantLock equipped with IPS/IDS modules can optionally be activated. Deploying IPS/IDS and co-defense system at once will minimize the total cost of ownership (TCO). Moreover, by deploying the 3-tier InstantConfig centralized management tool, administrators can manage more than 2000 sets of InstantLock units. InstantConfig can issue the command of signature update to so many InstantLock devices by just one simple click, which can furthur minimize another around of TCO to relief the efforts of network administrators.