Ciscoファイアウォール向けセキュリティポリシーの自動化

Tufin Orchestration Suite とCisco® Firewalls、Security Management、Network製品を組み合わせることで、高度なネットワーク保護と可視性を提供し、リスクのない迅速なポリシー変更を可能にします。

デモをリクエスト

今回の共同での提供により、ITセキュリティチームは、様々なベンダーやプラットフォームに対応したCiscoのセキュリティポリシーを一元的に管理・最適化することができます。Ciscoのセキュリティと接続性に関する高度な分析により、ポリシーの変更をゼロタッチで自動化し、固有の制御とコンプライアンスを実現することで、生産性とセキュリティを最大限に高めることができます。Ciscoのユーザーは、ファイアウォール、ルーター、SDNプラットフォーム(Cisco ACIなど)、パブリッククラウドプラットフォームからのネットワークセキュリティポリシーのオーケストレーションと自動化を、単一のコンソールから作業できます。

Tufinは、Cisco ACICisco Tetration Analyticsで紹介されているベンダーの一つであり、Cisco社の緊密なパートナーです。Tufin Orchestration Suiteは、アプリケーションのトラフィックフローに基づいて、効果的なネットワークやファイアウォールのセキュリティポリシーを発見、分析するソリューションの重要なコンポーネントです。また、TufinはCisco ACIとの統合により、物理ネットワーク、プライベートおよびパブリッククラウドプラットフォームにまたがるアプリケーション接続の可視化、継続的なコンプライアンス、変更の自動化を実現します。

Consolidate multi-vendor security policy management eliminate manual device management tasks.

IT and Security teams can use Cisco Security Policy Management and Tufin Orchestration Suite to centrally manage and optimize security policies across a variety of vendors and platforms.

Tufin is a close Cisco partner and is a featured vendor in the Cisco ACI and Cisco Tetration Analytics ecosystems. We integrate with Cisco to ensure your teams can:

  • Achieve zero-touch automation of network access changes.
  • Maintain continuous compliance with regulations and industry standards.
  • Gain real-time network risk awareness via a single console.
  • Reduce audit prep by from weeks to hours.

Maintain continuous compliance and be always audit ready.

Tufin allows you to monitor, control and troubleshoot misconfigurations across all leading firewalls, routers and switches, SDN, public clouds and containers. A variety of purpose-built and customizable reports are available allowing you to easily demonstrate compliance with regulatory mandates and industry standards.

Tufin customers report cutting down audit preparations from over a month to days, and even hours, with automated reporting across the hybrid network, a fully documented change process, and a proactive risk analysis that identifies and manages violations even before they are implemented.

READ: Large U.S. Utilities Company Cuts Network Change Time, Automates Compliance Tracking, and Reduces Downtime

対応製品

  • Cisco ACI
  • Cisco ASA
  • Cisco ASR90000/CRS
  • Cisco Firepower Management Center
  • Cisco Firewall Management Center Virtual
  • Cisco FWSM
  • Cisco IronPort
  • Cisco Nexus
  • Cisco PIX
  • Cisco Switches { L3, routers, Catalyst}
  • Cisco SecureX
  • Cisco Tetration

 

注目のビデオ シスコとTufinのパートナーシップ

Cisco Tufin Partnership
Cisco Tetration App Discovery

The Cisco Secure Firewall Threat Defense Virtual

Bring the functionality of Cisco’s Firepower Next Generation Firewall to virtualized environments, so security policies can be implemented uniformly across physical, virtual, and cloud environments. Cisco Secure Firewall Threat Defense Virtual combines network firewall capabilities with URL filtering and malware defense against vulnerabilities. With deep network visibility, teams can rapidly detect threats, their origin, and stop or contain attacks as soon as possible.

Learn more about Cisco components.

Cisco ACI

Optimize and automate operations across multi-cloud and multi-site data center networks. Cisco ACI enables LAN network management and zero-trust security policies for orgs with single data centers and those with multiple data centers and/or clouds.

Cisco ASA

Cisco’s Adaptive Security Appliance (ASA) Software boasts enterprise-level firewall capabilities for any distributed network. Cisco ASA Software helps teams to collaborate between physical and virtual devices and delivers high availability. You can also configure remote access VPN using AnyConnect. Cisco ASA can also combine with the Cisco Firepower feature to form Cisco Firepower Threat Defense (FTD), a next-generation intrusion prevention system.

Cisco ASR90000/CRS

The ASR 9000 Series Ethernet line cards, aka Typhoon-based or Enhanced Ethernet line cards support multiple Ethernet port support in a single slot. Deliver scalable, economical edge services and provide fundamental infrastructure to support your business profitability.

Cisco Firewall Management Center (FMC)

Cisco Firewall Management Center (FMC) (formerly Firepower Management Center)
Optimize intrusion prevention efforts and minimize security events with visibility across your global networks. Cisco FMC provides:

  • Extensive intelligence for efficient application and device management
  • Easy deployment of Firepower sensors for large networks or multiple deployments
  • Ability to choose from four firewall management platforms: Cisco hardware, private cloud environment, public cloud infrastructure, or cloud-delivered
  • Advanced malware protection to block attempted intrusions
  • Ability to set and manage access control policies

 

Cisco FWSM

Cisco’s Firewall Services Module (FWSM) is a stateful firewall module that installs into Catalyst 6500 series switches and Cisco 7600 series routers. FWSM offers many space-saving advanced features, including multiple security contexts and Layer 2 or Layer 3 firewall operation.

Cisco IronPort

Cisco IronPort offers a seamless support and management interface for former IronPort customers and partners to access a knowledge base and manage service renewals and support requests.

Cisco Nexus

The Nexus Dashboard helps teams configure data centers and cloud networks from on central location. Cisco Nexus Dashboard has a rich feature set that includes single sign-on (SSO), multi-factor authentication, and flexible deployment options across common infrastructure services.

Cisco PIX

PIX (Private Internet Exchange) is an IP firewall that fully conceals internal network architecture. PIX also enable secure internet access within private networks and provides larger IP address classes through Network Address Translation (NAT).

Cisco switches [IOS L3, routers, Catalyst]

Cisco’s series of network switches enable hybrid productivity, flexible model-driven programmability, and security features for proactive threat intelligence.

Cisco SecureX

Maintain security across your entire infrastructure with insights and context that accelerate security event investigations. Secure endpoints with SecureX to mitigate malware outbreaks. Automate routine orchestration tasks with workflow templates or build your own.

Cisco Tetration

Protect multi-cloud data centers and identify security incidents faster with Tetration. Titration is infrastructure-agnostic and supports on-premises and public cloud workloads.

Cisco Secure Firewall Threat Defense Virtual

Bring the functionality of Cisco’s Firepower Next Generation Firewall to virtualized environments, so security policies can be implemented uniformly across physical, virtual, and cloud environments. Cisco Secure Firewall Threat Defense Virtual combines network firewall capabilities with URL filtering and malware defense against vulnerabilities. With deep network visibility, teams can rapidly detect threats, their origin, and stop or contain attacks as soon as possible.