Feature Spotlight!

The HyperTrack IP Global Positioning System allows administrators of the HyperSwitch to geographically locate where an IP address that appears in the security logs is coming from. This feature is embedded in the Network Log Reporting engine of the product and allows administrators to locate an IP address in the Firewall logs, click on that IP address and home in on the geographical location of the IP address in question. The reporting engine also displays IP registration information such as the phone number, company and name of the owner of the IP address. This information is quickly obtained through Montego Network’s back end HyperTracking databases and locates the latitude and longitude of the IP address that appears in log files for the purpose of visually representing the location of an attacker on a map generated by Google Maps.

Expert Opinions

"While enterprises are eager to realize the benefits of virtualization—network managers still hold valid concerns about the security of these networks. The Montego HyperSwitch is a powerful solution to the virtual security problem that will appeal strongly to our customers who seek a comprehensive offering for improved visibility, policy enforcement and ironclad security for their virtual environments"

— Sean Shea, Expert Server Group

Product Features

Montego HyperSwitch^TM Product Highlights

HyperSwitch^TM Virtual Security Switch	Software-defined, high-speed virtual security switch Enforcement: Secure VM-to-VM communication, virtual machine segmentation, access control policies and more. Advanced virtual networking: High availability, load balancing, QoS, 802.1D Provides airtight virtual network security on a fast, interoperable architecture
Virtual network policy enforcement	Policy-based virtual network switching with granular, port-level security Complete resource access control: who, what, where, when, why and how Audited policy enforcement provides peace of mind and facilitates compliance
Virtual machine partitioning	Segments virtual machines and enforces machine-specific security policies Firewalls virtual machines from rogues, unlawful intercept and other attacks. Prevents attacks from propagating across virtual subnets and networks
Secure VM-to-VM communications	Policy-based, port-level security and 802.1Q VLAN support Prevents unauthorized communication between virtual machines and subnets Provides enhanced security and facilitates regulatory compliance
Virtual network discovery and auditing	Provides ongoing visibility over virtual network devices, services and traffic flows Validates authorized configurations; detects oversights, malfunctions and rogues Facilitates administrative control, service delivery and policy compliance
L2-L3 Virtual Network Firewalls	Layer 2 / Layer 3 filtering by IP and MAC addresses (source and destination) Restricts access based on time of day or other criteria Delivers effective control, efficient performance and easy manageability
L4 Application Firewall	Provides policy-based Layer 4 filtering of application-specific traffic Identifies network application content based on TCP/UDP port usage Detect and respond to anomalies in usage patterns and data structures
Identity Firewall	Enables audited access control and filtering by username Does not rely on IP address; enables control in DHCP environments Limits access to authorized users operating in an approved context. Provides peace of mind and facilitates compliance
Content Firewall	Restricts file access and blocks unauthorized users or networks Allows administrative control over files accessed; who, where, when, how Provides visibility and policy enforcement; facilitates regulatory compliance
HyperVSecurity Alliance^TM	Framework allows interoperable delivery of third-party security applications via the Montego HyperSwitch platform Allows easy deployment of best-of-breed virtual security products Avoids single-vendor limitations; facilitates flexible, policy-based solution delivery and investment protection
Policy-based security application delivery	User -defined traffic mirroring and switching to external security apps Selective traffic handling based on user-defined security policies and triggers “Work smart, not hard”. Targets resource-intensive security only where it’s needed Ensures optimal performance for trusted flows and virtual applications "Hub and spoke” architecture avoids network configuration and reliability issues – eliminates “daisy-chain” security with multiple points of failure
High-availability configurations; 802.1D Spanning Tree	Provides comprehensive redundant failover capabilities in case of network or application malfunction or overload Facilitates policy-based distribution of traffic across multiple virtual resources Addresses security, fault tolerance, manageability and service delivery objectives
Load balancing and Quality of Service (QoS) provisioning	Allows policy-based traffic shaping and distribution across multiple virtual resources HyperSwitch configurations and prioritization adapts to dynamic conditions Facilitates virtual service delivery, fault tolerance and manageability

Product Editions

Montego HyperSwitch is available in two editions:

Capabilities	Starter Edition	Enterprise Edition
Virtual security switch
High-availability networking
Load balancing and Quality of Service (QoS)
Network discovery
Layer 3 / Layer 4 Firewall
Layer 2 Firewall
Identity and Content Firewalls
HyperVSecurity Policy-Based Security App Delivery
Log reporting and Netflow Output
Technical Support
Price	Free	USD $495

Technical Specifications

Form Factor: Software-based virtual security switch
Supported Virtual Environments: VMware (April 2008); Citrix, Virtual Iron and Microsoft virtual environments (Q3 08)

Search