Maps Access Across Your Entire Enterprise
Effective network security requires you to know exactly what access is—and is not—allowed throughout your infrastructure. At all times. RedSeal Network Advisor accomplishes this by analyzing the configurations of all network devices to determine how they work together – automatically. First, it creates an accurate map of your network so you know how everything is connected. Then Network Advisor identifies authorized access between every two points in your infrastructure. Click anywhere on the map and you'll instantly see what access is permitted to and from that point to every other point in your network.
Collects Configurations From Anywhere
Network Advisor collects configuration data on every networked device from anywhere it's stored. It also gives you the option of collecting data directly from each device or connecting to your existing CMDB. Plus, you can schedule when and where configuration data is collected. In addition, you can load configuration data into Network Advisor via the client UI or the RedSeal REST API.
Provides Interactive Security Visualizations
Accurately mapping network access is only the beginning. Given the extraordinary complexity of networks today, understanding your company-wide security posture requires interactive visualizations. Network Advisor delivers with highly scalable and interactive security visualizations that allow you to immediately understand the security status of your network. And it allows you to communicate security issues to key influencers and business units outside of IT. Best of all, Network Advisor's visualizations make it easy to quickly spot anomalies in your network security.
Tracks & Reports Network
Security Metrics
The adage "you can't manage what you can't measure" is especially true in the world of security. Network Advisor automatically calculates the network security metrics that matter most to your business: attack surface, DMZ outlets, egress access, as well as custom metrics you define. More than just operational metrics, with Network Advisor you'll get the metrics that provide real insight into the quality of your network security, how IT changes are impacting network security and whether or not your efforts are improving your security posture.
Continuously Monitors Compliance
with Network Policy
As a security professional, you know all too well how regulatory mandates, such as PCI DSS, SOX, FISMA, HIPAA and NERC CIP complicate network security. With RedSeal, achieving and maintaining compliance just got simpler. To make sure you're in compliance with corporate and regulatory mandates, you can define policies to permit or deny traffic between security zones. RedSeal automatically validates that your network configuration enforces these policies, enabling you to continuously maintain compliance. RedSeal will even email you when a firewall or router change violates
a critical access policy. Plus, RedSeal's policy engine documents justifications for access and supports time-limited exceptions. This ensures that temporarily authorized access does not
become permanent.
Highlights Configuration
Policy Violations
In addition to access rules, many other network device configuration settings can impact your security. That's
why RedSeal automatically verifies all of your devices
are configured to meet over 100 industry best practices including those published by NIST, ISO, DISA, device vendors and the results of RedSeal internal security research. For example, RedSeal incorporates built-in checks for weak authentication, overly permissive policies, and settings that enable session hijacking. In addition, RedSeal enforces
your internal policies by verifying that device configurations comply with custom criteria.
Pinpoints Rules That Allow
or Block Access
In complex networks, it's difficult to determine what combination of devices and rules govern access rights. RedSeal automatically identifies the group of devices that collectively enable access between any two points in your network., Network Advisor even pinpoints the exact rules that enable access within individual devices. With RedSeal, your team will quickly isolate the root cause of risky or non-compliant access on your network. In the case of a change request, RedSeal identifies which devices (if any) are currently blocking the desired access and pinpoints the specific rules and ACLs that require change. This reduces fire drills during the change window and ensures that access requests are enabled reliably.
Optimizes the Rule base on Firewalls and Routers
Over time, firewall rules often become obsolete. As these unused rules accumulate, they increase the complexity of managing the firewall and pose potential security risks. RedSeal automatically evaluates firewalls and routers to determine unneeded and unused rules. Network Advisor identifies disabled, time-inactive or redundant rules that can be removed without changing the security function. For active rules, RedSeal reports on the frequency and timeframe of their use. This makes it easy to identify unused rules as well as improve performance by reordering the rule base.
Built For Enterprise Networks
Designed for large enterprise networks, Network Advisor continuously evaluates thousands of network devices on a daily basis with ease. With a data management and analysis system built specifically for modeling network access, Network Advisor easily scales as your network grows.