Cyberoam CR50i is an identity-based security appliance that delivers real-time network protection against evolving Internet threats to Small Office-Home Office. CR50i, June 30, , June 30, , June 30, , CR50iNG. CRi, June 30 CR50ia, June 30, , April 1, , April 1, , CR50iNG, CRiNG. Cyberoam ia Series. Cyberoam Virtual Security. UTM appliances for SOHO – ROBOView Cyberoam CR50iNG · Cyberoam CRiNG · Cyberoam CRiNG.
|Published (Last):||2 February 2009|
|PDF File Size:||8.71 Mb|
|ePub File Size:||11.29 Mb|
|Price:||Free* [*Free Regsitration Required]|
Can UTMs evolve beyond their powerful but sometimes rather limited roots? According to newcomer, Cyberoam, the next stage lies with identity-based management, a cyberoak way of saying that security is about monitoring real individuals and not necessarily treating all users as representing the same risk. They all feature more or less the same set of security modules, covering anti-virus, anti-spam, URL, email ycberoam web filtering, firewalling and sometimes some form of intrusion prevention system.
Cyberoam CR50ia Default Router Login and Password
It turns out that in the five years since they first emerged as a cgberoam of device, UTMs cyberoaj been maturing beyond the basic premise that a range of security layers can be combined in single boxes under one management console.
Easy to say, but it is actually quite a subtle idea and complex to implement. How do they use it to build a more sophisticated picture of security events without spending their whole working lives tweaking abstract settings?
The complex bit is coming up with the policies to do useful security work without generating false positives or turning the admins into little Big Brothers. In that sense, UTMS involve the same hard work that a separate firewall would generate. What is the policy? How does anyone know that the policy, if it does exist, is being followed?
A lot of challenges, then, even allowing that few admins start from scratch. It uses the same multi-core architecture as the rest of the range.
The box itself is outwardly unremarkable despite coming with no fewer than six Gigabit Ethernet ports plus a console portprobably overkill unless it is designed to sit at the core as a distribution node.
Ideally, it would have been nice to have had at least one Gigabit uplink on this as a halfway house option but perhaps this will appear in future cyberoaam. Internal subnets will obvious need to be the latter, but this is easily achieved using the web interface. On this model, there is no PSU or cooling redundancy beyond there being two fans rather than one.
An IPS subscription is also on offer an extra purchase, a security element that is harder to assess. The interface offers a lot to get to grips with at one time, and hinges on the core functions of user-focussed control and reporting.
This is an interesting design outlook and will appeal to admins, even though it requires asking some questions about what a particular user or ja should actually be able to do, and not do.
The heart of cybreoam in the 50ia is content filtering, which has a wide range of options, right down to cybefoam up blanket blocks on the basis cyberoak certain sites i.
Internet access policies can also be set up to positively allow certain clusters of sites to be visited by named users from the active directory list. The power of the identity-based design is that such policies can be created for specific users in every security category, including, say, web filtering. Fascinatingly, as well as defining what traffic heads into the enterprise, the system also offers some intelligent features as to what goes out as well, for instance in its data leakage prevention.
The latter can manage http upload to block attachments being posted to webmail systems, as well as stopping similar file transfers via P2P or IM.
Similar rules can be applied to email. Iaa addresses a major area of weakness of first-generation UTMs, namely that they naively assume security to be mainly an external threat. None of this would be worth much without clear reporting, and it appears that some thought has gone into this area of the Cyberoam, which is not always a strong point of rival products without buying add-on modules.
Drill-down reports provide full data on every type of attack and vector, from individual users to iz presentations — general trends. In addition, the system funnels key data into one of a series of compliance reporting formats.
The company also produces a full-blown reporting and security compliance suite, iView. On the one hand, the Cyberoam has the same feature set as any UTM, anti-malware, anti-spam, firewalling, intrusion prevention, content filtering.
What gives it an interesting edge is the integrated nature of these elements under the identity-based security concept, which allows a logical set of policies to be created based on real users in real situations.
Cyberoam CR50ia UTM appliance
This speaks of its recent design. The slight downside is that the initial policy creation process requires more thought than it might otherwise do because it forces admins to think about the security job in hand in terms of the users and their behaviour.
It also forces them to fyberoam from that perspective as well. Fortunately, the system goes the next cyberoaam step and includes sophisticated report generation to the mix, essential to analyse who is doing what and where. Are there any unknowns with Cyberoam? The IPS is an inhouse creation and we did not test its effectiveness or false positive generation rate, but that same suspicion could also be applied to any such module for any UTM.
It is unproven, as is the ability of a company to integrate and scale multiple Cyberoam devices into a large whole.
Cyberoam CR50ia UTM appliance – TechWorld
The buyer gets a lot for their money, including reporting, and can buy security modules via the Cyberoam reseller channel one at a time or as an overall package. Sign up to gain exclusive access to email subscriptions, event cybsroam, competitions, giveaways, and much more.
Tags network security firewalls UTM cyberoam. Sign in with LinkedIn Sign in with Facebook. With Google Chromium move, Microsoft raises white flag in browser war.