Need a firewall for that virtual machine?

March 31st, 2008

By Martin Hack del.icio.us Digg this

Blue Lane

It’s actually way more than just a firewall. Blue Lane, which we’ve covered in the past here and here, calls it a virtualized IPS (Intrusion Prevention System). They are about to release extensive additions to their VM protection suite VirtualShield including integration with VMware’s VirtualCenter. By now most data centers have extensive host and network based protection, there’s certainly no shortage of available solutions. But what about those virtual servers and virtual machines that are popping up all over the network? Track down and secure each one of them by hand? - I think not.

Blue Lane
VM Infrastructure navigation tree

It looks like people are finally waking up to the looming threats of unmanaged, and even worse, often completely unprotected virtual machines. Blue Lane’s list of customer deployments is impressive and growing rapidly. As we mentioned earlier, being able to create VM’s on the fly is a great relief and adds super convenience. It also adds an extra level or risk and complexity for the security guys.

Blue Lane’s solution allows administrators to secure VM’s for their entire data center, cluster, host or single VM. Within the next couple of months Blue Lane is going to add the following features to VirtualShield (see screenshots below):

  • Flow analytics Visibility into network flows by datacenter, cluster, host, VM
  • VMwall™ App-aware firewall - Allow/deny services for a given port within the datacenter / cluster / host; e.g., allow windows for the cluster, deny the rest
  • Application control policy - Rich set of application-specific inbound/outbound policies; e.g., deny user_x access to a certain set of operations on a given database, deny outbound rsh/rexec, etc. (intra-flow policy)
  • Protocol integrity check - Validate that a given protocol/service runs on the given port
  • Vulnerability policy framework - Allows customers to proactively configure the system to handle attacks such as SQLi, XSS, http smuggling, etc.

    Especially the VMwall Firewall in combination with Flow analytics should be a very strong tool to provide enterprise wide security and basic analysis for virtual environments.

    Blue Lane
    Flow Control for VM infrastructure - 30 Day Time Period




    Blue Lane
    Application Vulnerability Protection Screen




    Blue Lane
    VirtualShield Policies


    Enter your email address to get Hack Report news via email:


    12 Comments

    1. Comment by Mhunter on March 5, 2010 1:32 am

      I have zero interest in Blue Lane other than the fact that I dig their technology and products and think it solves some serious business problems elegantly and efficiently with a security efficacy that is worth its weight in gold.

    2. Comment by asdasd on April 17, 2010 1:45 am

      Juicy clothes
      Buy full line Juicy couture products from our site at a low price to make yourself a fashionista! Dress juicy couture clothing, holding juicy couture
      Shop prom dresses, formal dresses, prom shoes, 2010 designer prom gowns at dres4sale.
      for cocktail dresses, dresses for prom, homecoming dresses, and evening dresses. Cheap prom dresses or couture designer evening gowns for your next formal.
      evening dresses
      Evening Dresses. Women's Formal & Special Occasion Dresses ... Welcome to Cheap Evening Dresses for Sale! ... Buy Cheap Evening Dresses Sales & Accessories
      prom dresses

    3. Comment by labatterie on April 27, 2010 11:08 pm

      I have zero interest in Blue Lane other than the fact that I dig their technology and products and think it solves some serious business problems elegantly and efficiently with a security efficacy that is worth its weight in gold.

    4. Comment by labatterie on April 28, 2010 6:21 am

      for cocktail dresses, dresses for prom, homecoming dresses, and evening dresses. Cheap prom dresses or couture designer evening gowns for your next formal.

    5. Comment by organisme rachat de credit on May 13, 2010 4:21 am

      it's really impressive, thank you for this information.
      For more information on this subject, go http://www.fun-sonneries.fr
      it speaks of the same subject but from a different angle.

    6. Comment by Oxy on July 13, 2010 2:57 am

      well, I'm impressed. that must have been great!

    7. Comment by metin2 yang on July 15, 2010 8:48 pm

      very good . the words are useful

    8. Comment by NFL Jerseys on August 8, 2010 6:37 am

      I very much enjoyed your website. Excellent content.Your favorite team's Cheap jerseys delivered right to your door.
      Replica jerseys
      Replica nfl jerseys

    9. Comment by replica jerseys on August 29, 2010 7:55 am

      This blog is fantastic.I would like to introduce this nice website to my friends
      _____________________
      Wholesale nfl jerseys
      Cheap jerseys

    10. Comment by christmas gift exchange ideas on September 10, 2010 10:47 pm

      wow all those garments are so amazing and fabulous I don't come to your blog as often as I would like, but whenever I do I see some really amazing things keep up the good work! =)
      louis vuitton mini agenda refill
      black baseball cap

    11. Comment by work from home india on September 23, 2010 1:46 am

      love the information here hope to read more.

    12. Comment by Driving Directions on October 16, 2010 1:47 am

      Now new version BlueLine good work or not? Who know and use.

    Comments RSS TrackBack Identifier URI

    Leave a comment

    You must be logged in to post a comment.

    • Going to RSA? Check out this Data Privacy Event
     
    -->