Often used by organizations to ease remote management and to cut costs, a network server appliance is a typically inexpensive personal computer (sometimes called a thin client) that enables Internet access and some business-related activities.
Applications used on network appliances are housed on a Web server accessed by the appliance. Network appliances lack many of the features of a fully equipped PC, and are often referred to as "closed box systems" as they provide a complete solution consisting of limited hardware and software that is needed to perform a single or specialized set of functions. This hardware device allows for quick installation, ease-of-use, low maintenance and is managed through a Web browser. Increasingly, we're seeing appliances used in network security to replace more traditional software-based security solutions.
Popular with business and enterprise, Unified Threats Management, UTM is a category of security appliances that join together a range of security features into a single appliance. UTM appliances combine firewall, gateway anti-virus, and intrusion detection system, IDS or intrusion prevention capabilities into a single platform. UTM is designed to protect users from blended threats while reducing complexity. UTM appliances offer a way to manage multiple appliances from a single location, create and manage global security policies, provide real-time monitoring and logging, as well as provide a single interface to manage security. It's basically the evolution of traditional firewall and VPN (virtual private network) solutions that incorporates many additional products and services.
Network security appliances generally consist of a set of network management and security tools that are installed on-site. Many network security appliances will also provide organizations with secure VPN for remote access.
Languages to Know: Security Tools (IPS) Intrusion Prevention System: An IPS or intrusion prevention system is used in computer security. It provides policies and rules for network traffic along with an intrusion detection system for alerting system or network administrators to suspicious traffic, but allows the administrator to provide the action upon being alerted. Some compare an IPS to a combination of IDS and an application layer firewall for protection.
(IDS) Intrusion Detection System: An intrusion detection system, IDS, inspects all inbound and outbound network activity and identifies suspicious patterns that may indicate a network or system attack from someone attempting to break into or compromise a system. An IDS evaluates a suspected intrusion once it has taken place and signals an alarm. An IDS also watches for attacks that originate from within a system.
(VPN) Virtual Private Network: A network that is constructed by using public wires to connect nodes (nodes can be processing location, can be a computer or some other device, with a unique network address, sometimes called a Data Link Control, DLC address or Media Access Control, MAC address) For example, there are a number of systems that enable you to create networks using the Internet as the medium for transporting data. These systems use encryption and other security mechanisms to ensure that only authorized users can access the network and that the data cannot be intercepted.
Firewall: A system designed to prevent unauthorized access to or from a private network. Firewalls can be implemented in both hardware and software, or a combination of both. Firewalls are frequently used to prevent unauthorized Internet users from accessing private networks connected to the Internet, especially intranets. All messages entering or leaving the intranet pass through the firewall, which examines each message and blocks those that do not meet the specified security criteria.
Antivirus scanning: A utility that searches a hard disk for viruses and removes any that are found. Most antivirus includes an auto-update feature that enables the program to download profiles of new viruses so that it can check for the new viruses as soon as they are discovered.
Content/spam filter: A pattern through which data is passed. Only data that matches the pattern is allowed to pass through the filter. In this case the filters would block based on a list of Web sites, blocking illegal, objectionable or non-business-related content Common Network Security Options: Offers traditional software solution. Appliances offer many benefits including the following: it's easier to configure and manage, offers better integrity and features, better overall performance r. When choosing a software solution, you also need to consider the operating system, server hardware, storage servers and also provide maintenance. Set-up configuration for the solution including deployment, upgrades and monitoring.
In addition to choosing between software-based security and appliances, organizations can also look at what is traditionally called managed (or hosted) security options.