Virtual Network Security Platform

Data Sheet
Virtual Network Security
Platform
McAfee® intrusion prevention system (IPS) for virtual environments
McAfee Network Security Platform virtual sensor is a full-featured advanced
IPS solution ready for the unique demands of virtual environments. It is a
uniquely intelligent security solution that discovers and blocks sophisticated
threats in virtual networks with unmatched speed, accuracy, and simplicity.
Securing the Virtual
Key Advantages
■■
■■
■■
■■
■■
Intelligent solution for
advanced IPS in the
infrastructure, provisioned
and consumed as a
software-based service.
Removes enforcement and
architecture barriers for
network security policy in
virtualized environments.
Integration with VMware’s
NSX allows for streamlined
orchestration and trans
parent brokering.
Integration with VMware
creates VM-aware dash
board with quarantine
enforcement capability.
Manage physical hardware
and virtual sensors from
same management
platform.
Enterprises are moving towards virtual IT infra
structures, such as private and public cloud,
virtual data centers for servers, and virtual
machines for clients. Security requirements in
a virtual network often vary when compared
to physical networks.
As an example, monitoring peer-to-peer traffic
and access control in a virtual network has its
own challenges. Based on the network archi
tecture and unique security requirements,
virtual security products are often required to
do more than their physical counterparts. Even
for physical networks, virtual security products
can bring in savings in terms of cost and space
McAfee Network Security Platform for
Virtual Environments
McAfee Network Security Platform virtual
sensor is a virtual instance of the McAfee
Network Security Platform software, which you
can install as a virtual machine on a VMware
ESX host. You do not need any physical McAfee
IPS hardware to deploy a virtual sensor. Though
primarily designed to protect virtual networks,
you can deploy a virtual sensor to protect
physical networks as well.
Similar to a physical sensor, you can use McAfee
Network Security Manager to configure and
manage virtual sensors. This can be installed
on either a physical server or a virtual machine
host. Also, you can use the same McAfee
Network Security Manager to administer both
virtual and physical sensors.
The virtual sensor supports most features that
are supported by the physical sensor. With
the added advantage of being virtual, you can
quickly deploy virtual sensors to protect various
network architectures, both virtual and physical.
A Dual Defense
McAfee Network Security Platform virtual
sensor integrates with McAfee Advanced Threat
Defense. McAfee Advanced Threat Defense
detects today’s stealthiest zero-day malware with
an innovative, layered approach. It combines
low-touch antivirus signatures, reputation
intelligence, and real-time emulation defenses
with in-depth static code and dynamic analysis
(sandboxing) to analyze actual behavior. This
represents the strongest advanced malware
security protection in the market and effectively
balances the need for both protection and
performance.
Tight integration between McAfee Advanced
Threat Defense and network security devices,
such as McAfee Network Security Platform,
enables immediate action when McAfee
Advanced Threat Defense convicts a file as
malicious. McAfee network security solutions
Data Sheet
graphical user interface put you in control
of real-time data. You can easily manage,
configure, and monitor all McAfee Network
Security Platform appliances, virtual or
physical, as well as McAfee Network Threat
Behavior Analysis appliances. The intuitive
web-based management interface handles
any deployment—from single devices on up
to widely distributed, mission-critical clusters.
McAfee Network Security Manager can also
be deployed as a virtual instance within
ESX servers.
immediately block any other copies of this
file coming into the network, without the
need to send them on for further analysis. In
addition, McAfee Network Security Platform
can quarantine an infected host, preventing
the spread of malicious activity in the network.
Real-Time Control of Real-Time Data
A single McAfee Network Security Manager
appliance delivers centralized, web-based
management and unrivaled ease of use. The
state-of-the-art console and enhanced
IPS-VM100
IPS-VM600
IPS-VM100-VSS1
Virtual Platform Requirements
VMWare
•VMware ESX 5.0
•VMware ESX 5.1
VMware ESXi5.5
No
Yes
3 to 4
3 (3vCpu)
up to 6 GB
5 GB
NSX Support
Number of logical cores
2
Memory required3
Virtual Sensor Specifications
Aggregate performance4
up to 100 Mbps
up to 600 Mbps
up to 700 Mbps
Maximum throughput5
up to 150 Mbps
up to 1 Gbps
up to 1 Gbps
200,000
600,000
200,000
Connections established per second
6,000
20,000
6,000
Supported UDP flows
39,000
254,000
39,000
2
6
16
Virtual interfaces (VIDS) per sensor
32
100
32
Dos profiles
100
300
100
Management port
Yes
Yes
Yes
Response port
Yes
Yes
Concurrent connections
Number of monitoring port pairs
Deployment modes
Inter-VM inspection, physical-to-VM inspection,
physical-to-physical inspection, SPAN port inspection
No
NSX inline inspection
1. For use only in NSX environments as an inserted service.
2. The VM resource requirements may change for releases. Please refer to release specific documentation.
3. Ibid.
4. Performance and capacities are measured under ideal testing conditions.
5. Measured with 1518 bytes UDP packets under ideal testing conditions.
6. Ingress and egress virtual representation. Inspection is closely tied to NSX at the kernel layer.
McAfee. Part of Intel Security.
2821 Mission College Boulevard
Santa Clara, CA 95054
888 847 8766
www.intelsecurity.com
Intel and the Intel logo are registered trademarks of the Intel Corporation in the US and/or other countries. McAfee and the McAfee logo are registered
trademarks or trademarks of McAfee, Inc. or its subsidiaries in the US and other countries. Other marks and brands may be claimed as the property
of others. The product plans, specifications and descriptions herein are provided for information only and subject to change without notice, and are
provided without warranty of any kind, express or implied. Copyright © 2015 McAfee, Inc. 61595ds_vnsp_0115_ETMG

Download Report