AcoustiRACK Lownoise Cabinets Allot Communications Alteon AppSense APC American Power Conversion Nortel Networks Alteon Portfolio Barracuda Networks Bluecoat Proxy/Websense Checkpoint CipherTrust Cisco Cisco PIX Firewalls Citrix Crossbeam Systems CRYPTOCard Double-Take EMC Corporation Expand Networks F5 Networks FaceTime Finjan Software Fortinet Security Appliance Foundry Networks Fujitsu Siemens GBIC (GigaBit Interface Converter) HP Proliant Servers HP Storage Networking Solutions Identrica IBM xSeries Server & Bladecenter Intelligent Wave Ironport ISS Proventia Juniper Networks McAfee Netscreen Firewall/VPN Nokia IP Security Platform Nortel Networks Observer Suite Opteq Packeteer PC Guardian Encryption Proventia Q-Balancer RED-M Wireless Network Security Retina Network Security Scanner RightFax (Captaris) Riverbed Technology RSA Reflex Security Secure Computing Safeword - Secure Computing SonicWALL Firewall SurfControl Text Message Server TippingPoint Top Layer TRENDMicro Vasco Digipass Authentication VMware WatchGuard Firewall/VPN Webscreen Websense

Reflex Security System
Home > Products > Reflex Security > Reflex Security System System

Introduction: Reflex Security System

Network Security Powerhouse: Reflex IPS MG5 and MG10

10 Gbps Performance at the Network Core
The heavy-hitting Reflex IPS MG5 and Reflex IPS MG10 systems deliver high performance, high availability intrusion prevention to the network core at up to 10 Gbps.

Network Security Powerhouse: Reflex IPS MG5 and MG10The standards-based Reflex IPS MG™ is an ideal solution for enterprise, carrier, MSSP and hosted applications that require high security, high bandwidth, high reliability, granular control, NEBS compliance and other critical features.

The Reflex MG overcomes the shortcoming of disparate "pizza box" and/or other low-availability, low-performance security server systems.  It delivers a network-wide solution with unsurpassed security, performance, reliability and ease of use.

Scalable Distributed Security ArchitectureTM
The ground-breaking Reflex IPS MG intrusion prevention appliances feature a blade-based Distributed Security Architecture™ (DSA) that provides scalable throughput from 10 Mb to 10 Gb per second.

Reflex MG leverages the award-winning Reflex Security IPS engine, patent-pending Reflex VSA virtual security appliance and a rugged Advanced TCA system chassis.

As the first clustered IPS solution on a sophisticated multiprocessor / multi-core architecture, Reflex MG makes it possible to deliver a fast, flexible security application without the limitations of proprietary, hard-coded ASIC designs.

  • High Availability: Multi-blade Redundant Clustering Architecture™dynamically adapts to component failure.  Failover, hot standby, hardware bypass and hot swap capabilities simplify maintenance, ensure maximum uptime and minimize network exposure.
  • Manageability:  Centralized cluster management via a Reflex Command Center located within the MG chassis or in a remote machine. 
  • Flexibility:  Mix-and-match application blades can be configured to address a wide variety of security, throughput and redundancy requirements.
  • High Density:  Clustered, high-density security solution optimizes the use of networking, floor space, power and related requirements.

Hundreds of IPS appliances on a single platform: Each IPS blade can support multiple Reflex VSA virtual IPS instances. These VSA instances can be software-provisioned in redundant, load-balanced configurations or partitioned to deliver distinct security policies to an individual subnet, VLAN or hosted configuration.

  • Scalability:  Redundant Clustering Architecture and interchangeable blades easily support future security, bandwidth and redundancy requirements.
  • Interoperability: The standards-based architecture maximizes compatibility, avoids proprietary equipment obstacles and provides long-term investment protection. 

Technical Highlights

  • Integrated intrusion prevention/intrusion detection system, firewall, traffic distributor/classifier/shaper, management console and more
  • Intel ATCA blade-based architecture
  • Incremental configuration options provide 10/100/1000/10 Gb connectivity
  • 5 and 14 slot platform options
  • Dual processor and dual core IPS sensor blades (2 GHz per core)
  • Capacity up to 48 CPUs (96 GHz total processing power)
  • NEBS Level 3 compliant DC and AC power options
  • Hot swap and high-availability features
  • Optical bypass options

Reflex IPS MG Deployment
The Reflex IPS MG™ is typically deployed at strategic aggregation or gateway points on the network.  Depending on the environment these may include data center segments, WAN segments, key wiring closets, etc.   By clustering IPS on a rugged, high-performance platform, the Reflex MG provides a cohesive, easy to manage solution that is ideal for large and high speed networks.

Of note, while the Reflex MG supports up to 10 Gb connectivity, it may be easily configured to support lower throughput requirements (while maintaining the capability to incrementally upgrade capacity as needed).

Reflex IPS MG Deployment Examples
The Reflex IPS MG may be deployed in a variety of configurations including::

  • Network Aggregation Point: Reflex MG is deployed where multiple networks converge on a larger backbone/backhaul network segment, etc.
  • Network Control Point: Reflex MG is deployed as a control point for traffic transiting between two network segments.
  • Dedicated Network Segment to Dedicated MG Blade: Traffic from a specific network subdivision (VLAN, subnet, IP range, etc.) is directed through a dedicated IPS blade on the Reflex MG chassis.  By routing traffic through different physical IPS blades, individual network segments can deploy differentiated security policies.
  • Secure Switching:  Reflex MG is deployed as a control point for traffic transiting between multiple network segments, (VLANs, floors, departmental subnets, etc.) This configuration provides consolidated, high-density, high-reliability intrusion prevention / security functions and eliminates the need for individual IPS "pizza boxes" in front of protected network segments.
  • High-Availability -- Symmetric Traffic: Two Reflex MG chassis are deployed in an "active-active" high-availability configuration; traffic can fail over to an available resource in the event of a component malfunction.  This configuration can also be deployed in an "active-standby" arrangement.
  • High Availability -- Asymmetric Traffic:  Two Reflex MG chassis provide an additional layer of redundancy that allows traffic to continue uninterrupted in the event of failure with an ISP or other devices in the communication flow.
  • High Availability -- Intra-Chassis Redundancy: A single Reflex MG chassis with Redundant Clustering Architecture™ is configured with internal component redundancy (application blades, power supplies, fans, storage, chassis management and other critical features).  In the event of a component failure, load is shifted to an available, operational component.
  • Virtual Security Appliance on a BladeMultiple Reflex VSA™ instances are deployed on Reflex MG IPS blades.  This configuration is ideal for many university, large enterprise and Managed Security Service Provider (MSSP) environments.  This configuration can consolidate hundreds of IPS systems into a single, manageable platform with software managed provisioning, policy definition, load-balancing, high-availability, security information management and more.

Datasheets:

 

 
Call me now
Chat Online
Request Quote
Email Us

(+44) (0)845 226 3535

Get a Quote

Get a fast, no-obligation quote tailored to your requirements:

GSA Schedule

Speak Free
Copyright © Computrad (Europe) Limited - All Rights Reserved
Tuesday 7th Oct 2008 pm