Click here to close now.

Welcome!

Security Authors: Elizabeth White, Pat Romanski, Liz McMillan, John Wetherill, Ed Featherston

Related Topics: Linux, Security

Linux: Article

The Astaro Security Gateway 320

The good news is that Astaro makes it easy to protect yourself with a family of security gateway appliances

If you're responsible for network security, then you know that yours is a job fraught with worry over spam, network intrusions, viruses, and internal hazards like rogue servers, internal malicious activity, and web surfing control. The good news is that Astaro makes it easy to protect yourself with a family of security gateway appliances. The ASG320, its model for mid-sized business and enterprise divisions, packs a high-value punch. It doesn't take a string of Linux servers to set up a security infrastructure, just a single appliance that's certainly a more economical solution. The ASG320 is more than a firewall since it provides network segment configuration, intrusion protection, packet filtering, and an IPSEC VPN configuration toolset.

Initialization and setup of the ASG320 is a snap with a Web interface similar to many home office-style wireless routers. The Astaro WebAdmin management platform lets you get going immediately. In minutes, passwords are set, the license files are uploaded, and the configuration is ready to be customized. The ASG320 allows for complete control in configuring internal- and external-facing network interfaces and system users. The network services section comes with several common protocols already defined on the default ports, and a clean and simple utility for defining custom services.

As might be expected, the ASG320 provides configuration interfaces for routing, DHCP, and NAT and provides a traffic accounting utility. The accounting information and local logs can be browsed or queried through the ASG320's intuitive log query utility, which lets you highlight or filter information by time span and/or message type.

The Intrusion Protection System (IPS) on the ASG320 recognizes attacks automatically and blocks them before they can reach your network. A key feature of the IPS is its Portscan Detection. Many attacks begin as would-be intruders scan networks to find which services are available. The Portscan Detection feature detects these scans and alerts you to the potential attack. The IPS also provides severity-based alerts and notification. The system recognizes and records detected and blocked packets and sends alerts based on your configuration so you can make adjustments based on incoming or outgoing traffic. Powerful exclusion policies can be created through the Advanced section of the Intrusion Protection interface. Here you can customize performance-tuning parameters for common server connections such as HTTP, DNS, SMTP, SQL, or Telnet.

The ASG320's Packet Filter provides great flexibility in setting up firewall rules. The ASG320 blocks all packets by default, and requires you to define which packets can pass. Commonly needed settings and utilities such as SYN rate limiting and the definition of ICMP policy are handled with ease.

Virus Protection on the ASG320 is achieved via content filters where the ASG320's Proxy Content Manager scans passing e-mails for potentially dangerous or unwanted content. The offending messages are identified and blocked automatically. Through the Proxy Content Manager these messages are deferred or quarantined, and can be subject to automatic cleanup. The Proxy Content Manager can also be configured to send you a daily spam digest.

The ASG320 provides an IPSEC VPN toolset. With the IPSEC VPN configuration area, you can configure the types of connections that your network will support, policies for those connections, and local and remote keys with which those connections authenticate. Additional features include configuring L2TP over IPSEC connections and CA management so you can manage your own X.509 Certificate Authority. Here the ASG320 extends well beyond the notion of a firewall simply as a packet filter. IPSEC VPNs can create complex management and the ASG320 simplifies and centralizes that management.

While it was pegged with internally simulated traffic and nakedly exposed to the ravages of raw Internet traffic, the ASG320 sang. It detected ping and port scans and dozens of simultaneous connection attempts during the test. Forensic analysis of the system logs revealed attacks consistent with well-publicized viruses, but the sources were stopped dead. The ASG320 handled the traffic and reported attack bursts as expected, while suffering only slightly from the immense load it was operating under. Its intrusion protection and packet-filtering features performed as needed in an enterprise network.

The ASG320 comes with several management utilities to simplify administration. With its configuration backup utility you can save or upload your ASG320's configuration, or configure the system to mail the file to a specified e-mail address with the option of encryption. The ASG320 lets you update virus definitions, system patches, and security features using its System Up2Date service. SNMP access and traps are available services, as is remote system logging.

If you're worried about the ASG320 being a single point of failure, fear not for it comes with integrated high availability. High Availability Menu is configured with the first ASG320 set in Normal Mode and the second in Hot Standby Mode. Besides the data transfer connections, the standby system can monitor the active system via a serial interface.

Conclusion
With a rich interface, and a completely configurable host encompassing thousands of functions, the ASG320 can still make it easy to secure your network. It's designed for the data center and appears to benefit from a design driven by requirements that most data center managers would expect. System management, intrusions detection, packet filtering, and virus and spam protection are provided in an economical package with little management required beyond the initial configuration. Considering the price and functionality combined with ease of use this is an excellent solution for the small and medium-sized data center.

See Sidebar

More Stories By Matt Frye

Matt Frye is the Review Editor at Linux.SYS-CON.com, and Engineer in New Product Introduction and Emerging Network Solutions at Tekelec.

Comments (1) View Comments

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.


Most Recent Comments
LinuxWorld News Desk 07/17/05 01:25:42 PM EDT

Product Review: The Astaro Security Gateway 320
If you're responsible for network security, then you know that yours is a job fraught with worry over spam, network intrusions, viruses, and internal hazards like rogue servers, internal malicious activity, and web surfing control. The good news is that Astaro makes it easy to protect yourself with a family of security gateway appliances. The ASG320, its model for mid-sized business and enterprise divisions, packs a high-value punch.

@ThingsExpo Stories
The 3rd International @ThingsExpo, co-located with the 16th International Cloud Expo – to be held June 9-11, 2015, at the Javits Center in New York City, NY – is now accepting Hackathon proposals. Hackathon sponsorship benefits include general brand exposure and increasing engagement with the developer ecosystem. At Cloud Expo 2014 Silicon Valley, IBM held the Bluemix Developer Playground on November 5 and ElasticBox held the DevOps Hackathon on November 6. Both events took place on the expo floor. The Bluemix Developer Playground, for developers of all levels, highlighted the ease of use of...
Grow your business with enterprise wearable apps using SAP Platforms and Google Glass. SAP and Google just launched the SAP and Google Glass Challenge, an opportunity for you to innovate and develop the best Enterprise Wearable App using SAP Platforms and Google Glass and gain valuable market exposure. In his session at @ThingsExpo, Brian McPhail, Senior Director of Business Development, ISVs & Digital Commerce at SAP, outlined the timeline of the SAP Google Glass Challenge and the opportunity for developers, start-ups, and companies of all sizes to engage with SAP today.
Enthusiasm for the Internet of Things has reached an all-time high. In 2013 alone, venture capitalists spent more than $1 billion dollars investing in the IoT space. With "smart" appliances and devices, IoT covers wearable smart devices, cloud services to hardware companies. Nest, a Google company, detects temperatures inside homes and automatically adjusts it by tracking its user's habit. These technologies are quickly developing and with it come challenges such as bridging infrastructure gaps, abiding by privacy concerns and making the concept a reality. These challenges can't be addressed w...
The industrial software market has treated data with the mentality of “collect everything now, worry about how to use it later.” We now find ourselves buried in data, with the pervasive connectivity of the (Industrial) Internet of Things only piling on more numbers. There’s too much data and not enough information. In his session at @ThingsExpo, Bob Gates, Global Marketing Director, GE’s Intelligent Platforms business, to discuss how realizing the power of IoT, software developers are now focused on understanding how industrial data can create intelligence for industrial operations. Imagine ...
SYS-CON Events announced today that Liaison Technologies, a leading provider of data management and integration cloud services and solutions, has been named "Silver Sponsor" of SYS-CON's 16th International Cloud Expo®, which will take place on June 9-11, 2015, at the Javits Center in New York, NY. Liaison Technologies is a recognized market leader in providing cloud-enabled data integration and data management solutions to break down complex information barriers, enabling enterprises to make smarter decisions, faster.
The 17th International Cloud Expo has announced that its Call for Papers is open. 17th International Cloud Expo, to be held November 3-5, 2015, at the Santa Clara Convention Center in Santa Clara, CA, brings together Cloud Computing, APM, APIs, Microservices, Security, Big Data, Internet of Things, DevOps and WebRTC to one location. With cloud computing driving a higher percentage of enterprise IT budgets every year, it becomes increasingly important to plant your flag in this fast-expanding business opportunity. Submit your speaking proposal today!
Hadoop as a Service (as offered by handful of niche vendors now) is a cloud computing solution that makes medium and large-scale data processing accessible, easy, fast and inexpensive. In his session at Big Data Expo, Kumar Ramamurthy, Vice President and Chief Technologist, EIM & Big Data, at Virtusa, will discuss how this is achieved by eliminating the operational challenges of running Hadoop, so one can focus on business growth. The fragmented Hadoop distribution world and various PaaS solutions that provide a Hadoop flavor either make choices for customers very flexible in the name of opti...
Cultural, regulatory, environmental, political and economic (CREPE) conditions over the past decade are creating cross-industry solution spaces that require processes and technologies from both the Internet of Things (IoT), and Data Management and Analytics (DMA). These solution spaces are evolving into Sensor Analytics Ecosystems (SAE) that represent significant new opportunities for organizations of all types. Public Utilities throughout the world, providing electricity, natural gas and water, are pursuing SmartGrid initiatives that represent one of the more mature examples of SAE. We have s...
The Internet of Things will put IT to its ultimate test by creating infinite new opportunities to digitize products and services, generate and analyze new data to improve customer satisfaction, and discover new ways to gain a competitive advantage across nearly every industry. In order to help corporate business units to capitalize on the rapidly evolving IoT opportunities, IT must stand up to a new set of challenges. In his session at @ThingsExpo, Jeff Kaplan, Managing Director of THINKstrategies, will examine why IT must finally fulfill its role in support of its SBUs or face a new round of...
The 4th International Internet of @ThingsExpo, co-located with the 17th International Cloud Expo - to be held November 3-5, 2015, at the Santa Clara Convention Center in Santa Clara, CA - announces that its Call for Papers is open. The Internet of Things (IoT) is the biggest idea since the creation of the Worldwide Web more than 20 years ago.
Wearable devices have come of age. The primary applications of wearables so far have been "the Quantified Self" or the tracking of one's fitness and health status. We propose the evolution of wearables into social and emotional communication devices. Our BE(tm) sensor uses light to visualize the skin conductance response. Our sensors are very inexpensive and can be massively distributed to audiences or groups of any size, in order to gauge reactions to performances, video, or any kind of presentation. In her session at @ThingsExpo, Jocelyn Scheirer, CEO & Founder of Bionolux, will discuss ho...
The true value of the Internet of Things (IoT) lies not just in the data, but through the services that protect the data, perform the analysis and present findings in a usable way. With many IoT elements rooted in traditional IT components, Big Data and IoT isn’t just a play for enterprise. In fact, the IoT presents SMBs with the prospect of launching entirely new activities and exploring innovative areas. CompTIA research identifies several areas where IoT is expected to have the greatest impact.
Can call centers hang up the phones for good? Intuitive Solutions did. WebRTC enabled this contact center provider to eliminate antiquated telephony and desktop phone infrastructure with a pure web-based solution, allowing them to expand beyond brick-and-mortar confines to a home-based agent model. It also ensured scalability and better service for customers, including MUY! Companies, one of the country's largest franchise restaurant companies with 232 Pizza Hut locations. This is one example of WebRTC adoption today, but the potential is limitless when powered by IoT.
One of the biggest challenges when developing connected devices is identifying user value and delivering it through successful user experiences. In his session at Internet of @ThingsExpo, Mike Kuniavsky, Principal Scientist, Innovation Services at PARC, described an IoT-specific approach to user experience design that combines approaches from interaction design, industrial design and service design to create experiences that go beyond simple connected gadgets to create lasting, multi-device experiences grounded in people's real needs and desires.
Every day we read jaw-dropping stats on the explosion of data. We allocate significant resources to harness and better understand it. We build businesses around it. But we’ve only just begun. For big payoffs in Big Data, CIOs are turning to cognitive computing. Cognitive computing’s ability to securely extract insights, understand natural language, and get smarter each time it’s used is the next, logical step for Big Data.
The Internet of Things will greatly expand the opportunities for data collection and new business models driven off of that data. In her session at @ThingsExpo, Esmeralda Swartz, CMO of MetraTech, discussed how for this to be effective you not only need to have infrastructure and operational models capable of utilizing this new phenomenon, but increasingly service providers will need to convince a skeptical public to participate. Get ready to show them the money!
SYS-CON Events announced today that MetraTech, now part of Ericsson, has been named “Silver Sponsor” of SYS-CON's 16th International Cloud Expo®, which will take place on June 9–11, 2015, at the Javits Center in New York, NY. Ericsson is the driving force behind the Networked Society- a world leader in communications infrastructure, software and services. Some 40% of the world’s mobile traffic runs through networks Ericsson has supplied, serving more than 2.5 billion subscribers.
17th Cloud Expo, taking place Nov 3-5, 2015, at the Santa Clara Convention Center in Santa Clara, CA, will feature technical sessions from a rock star conference faculty and the leading industry players in the world. Cloud computing is now being embraced by a majority of enterprises of all sizes. Yesterday's debate about public vs. private has transformed into the reality of hybrid cloud: a recent survey shows that 74% of enterprises have a hybrid cloud strategy. Meanwhile, 94% of enterprises are using some form of XaaS – software, platform, and infrastructure as a service.
The Internet of Things is not new. Historically, smart businesses have used its basic concept of leveraging data to drive better decision making and have capitalized on those insights to realize additional revenue opportunities. So, what has changed to make the Internet of Things one of the hottest topics in tech? In his session at @ThingsExpo, Chris Gray, Director, Embedded and Internet of Things, discussed the underlying factors that are driving the economics of intelligent systems. Discover how hardware commoditization, the ubiquitous nature of connectivity, and the emergence of Big Data a...
With major technology companies and startups seriously embracing IoT strategies, now is the perfect time to attend @ThingsExpo in Silicon Valley. Learn what is going on, contribute to the discussions, and ensure that your enterprise is as "IoT-Ready" as it can be! Internet of @ThingsExpo, taking place Nov 3-5, 2015, at the Santa Clara Convention Center in Santa Clara, CA, is co-located with 17th Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. The Internet of Things (IoT) is the most profound change in personal an...