Latest Products

Deep-Secure Network Management Guard

The Deep-Secure Network Management Guard controls the flow of network management traffic, carried by SNMP, between managed networks and a single management network.  Leveraging the trusted and proven DeepSecure® technology platform, the Deep-Secure Network Management Guard lowers the cost of network management in sensitive systems by enforcing a highly configurable data sharing policy. The Deep-Secure Network Management Guard allows network managers to monitor and control a number of networks without introducing any unwanted connectivity between them.  The Guard is deployed on the boundary of a management network, where it interfaces to a managed network, and all network management traffic is passed through it. The Guard checks Simple Network Management Protocol (SNMP) and Internet Control Message Protocol (ICMP) PING traffic, allowing it to pass or blocking it as policy dictates. When traffic is blocked the Deep-Secure Network Management Guard will log the event. It can also be configured to generate Traps to inform the manager of the event. The Guard acts as a full application layer proxy for SNMP and PING. This means no protocol control information passes between the networks, reducing leakage paths and scope for attacks to propagate.  The Guard is transparent to both the managed devices and the management network; hence it can be rapidly deployed without changing underlying network infrastructures. The Deep-Secure Network Management Guard is available as a pre-installed appliance. It provides EAL4 evaluated network separation through use of Oracle’s Solaris Zones and Trusted Extensions which the underlying Bastion® platform relies upon. The Deep-Secure Network Management Guard can be remotely administered via SSH. For further information please read our fact sheet.