More than a mere firewall solution, NovellBorderManager 3.7 provides a range of different security products in one enterprise solution suite. Although specifically designed to protect companies from internal threats such as unauthorised Web browsing, it still allows employees access to business-critical Internet resources.
"Novell BorderManager is primarily a `security three As` solution," says Novell system engineer Paulo Ferreira. "The strategic emphasis of the product is authentication, authorisation and administration via optimised forward proxies. While other services such as VPN and firewall are included in the product, the primary strength and purpose of Novell BorderManager is Internet access control - the ability to control and monitor the Internet activity of private network users, by identity."
Rated third among firewall solutions by Gartner and certified by ICSA Labs, Novell BorderManager is based on Novell eDirectory, a cross-platform directory service that can integrate with any identity repository of any kind - not just LDAP directories - via DirXML.
"The flexibility, scalability, performance, and integration potential of Novell eDirectory is a unique advantage for Novell BorderManager as an Internet access control solution," says Ferreira. "In any environment, the product can bring identity-based Internet access control and logging into the transparent, automated eProvisioning process."
The primary means of protecting the organisation from internal security risks is through BorderManager`s forward-proxy technology.
"A forward proxy is a server that is installed between the network and the Internet," Ferreira explains. "Any requests for Internet content made by someone from within the company must pass through the forward-proxy server before being sent outward to the Internet. This layer between the network and the outside world acts as a filter, allowing the company to selectively block requests to unauthorised Web pages or other resources. Forward-proxy technology can protect the network against harmful or illegal content that users attempt to access via the Internet. The filtering capabilities of Novell BorderManager forward proxy block the harmful content before it can enter the system."
Novell BorderManager also incorporates the N2H2 Internet Filtering solution and SurfControl Content Database, a scalable content-filtering service that adds another layer of filtering to the system and ensures that harmful content is not introduced into the network from the outside. SurfControl ensures that inappropriate Web sites are blocked and tailors restrictions to the individual user, leaving employees free from distractions and able to focus on their jobs.
"The end result is a more efficient work force that makes better use of company time," Ferreira notes. "Additionally, BorderManager also accelerates network performance by establishing forward-proxy caches and restricting frivolous downloads and recreational Web surfing. The forward-proxy server identifies Web pages that users frequently access and then stores copies of them so that subsequent page requests can be fulfilled locally, thereby saving both download time and Internet bandwidth. By restricting access to frivolous content the amount of bandwidth available for business-related purposes is increased, which can make a significant difference in the network`s responsiveness and availability.
"A further benefit is that proxy caching creates a low-cost alternative to expensive equipment upgrades. Instead of installing new circuits and hardware in order to expand available bandwidth, proxy caching can be implemented to minimise redundant or unnecessary Internet traffic. The existing network will perform more efficiently and the users will be able to access critical information more quickly.
"By implementing Novell BorderManager, companies can be confident that their information and resources are safe from all potential threats," Ferreira concludes.
Share
Editorial contacts