Back to GigaNetworkers
Cisco SD-WAN offering both networking and security to include full-stack multilayer security capabilities on the platform and in the cloud. Its integrated on-premises and cloud security arms IT with advanced threat defense wherever it is needed – for branches connecting to multiple SaaS or IaaS clouds, to data centers, or everything on the internet.
itself spans a different combinationof security features. These security features are:
IPSec Encryption: An underlying WAN fabric forsecuring on-prem WAN access and direct internet access
IPS: A built-in intrusion prevention system within on-prem enterprise firewall based on Snort and powered by Talos
App Controls: A built-in security practice within every part of the security stack, able to control 1400+ apps using on-prem enterprise firewall
Malware Protection: An extended security feature across both on-prem and cloud security using Cisco AMP and Threat Grid to prevent/detect malicious files with sandboxing
SSL/TLS Decryption: A security feature with unlimited scale for either cloud security or on-premsecurity with sufficient resources.
URL Filtering: An extended security feature across both on-prem and cloud platforms with 80+ web categories covering millions of domains and billions of web pages
Cisco vManage had logically grouped all the Threats and giving customer & admins the ease to configure the security policy as they want , Summary of Threat Surface below :
If you login to vManage , goto configuration > Security and find the Screen below :
You can see how easily is to group the Various security flaws and apply tight security on top of that ,
so we have options :
1) Compliance ( FW + IPS/IDS)
2) Guest access ( FW + URL Filter)
4) Direct Internet Access ( FW + IPS/IDS + URL Filter + AMP + DNS Security )
5) Custom ( That you can mix and match any combination not listed above )
You can find the videos And Full course
@Udemy link below :
https://www.udemy.com/course/sdwan-security/
@YT below link :
https://www.youtube.com/watch?v=xfZeiMCVbtQ&list=PL1PiPEQOeKMZZH7rr4d4nNmQu1WD3Oi_f
No comments:
Post a Comment