Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.


06:40 AM
Connect Directly

Microsoft Debuts VPN Appliance

SSL-based Intelligent Application Gateway is latest offering in its Forefront security product line

Microsoft rolled out today its long-awaited SSL VPN appliance, the Intelligent Application Gateway (IAG) 2007, a new endpoint product under its Forefront security umbrella. IAG is a combination SSL VPN/Web application firewall from its Whale Communications acquisition, plus Microsoft's Internet Security and Acceleration Server (ISA Server).

IAG simplified the original architecture of the Whale device, which was comprised of two servers. "It was two Intel servers glued together with a SCSI server -- one server pointed to the external network, and one server pointed to the internal network," Joel Sloss, senior product manager for Microsoft's edge security and access products said in an interview with Dark Reading. "As good as that was for network separation, it does drive up the complexity of the solution and fundamental cost of the hardware."

Microsoft's new SSL VPN appliance uses a single motherboard solution, he says.

In a separate announcement, Microsoft says over 100 partners plan to support and integrate with its Network Access Protection (NAP) platform, which is built into Vista and Longhorn, the upcoming version of Windows Server. Over 40 of these NAP implementations will be shown at the RSA Conference next week in San Francisco.

Meanwhile, the company has handed off distribution of its new IAG product to key OEM partners: Celestix Networks Inc. and Network Engines Inc. are offering the pre-configured appliances and selling them via reseller partners. The goal is to make the appliances more affordable for all sizes of organizations, according to Sloss.

Sloss says the new appliance fits Microsoft's strategy for providing a policy-defined network for network access. Whale was ahead of the curve with its SSL VPN/Web application firewall combo, he notes, as well as its out-of-the-box custom security policies. "Other vendors are just now realizing the link between access and security," he says.

Available now, the IAG is priced from $6,000 to $13,000 from Celestix, and for around $15,000 from Network Engines.

— Kelly Jackson Higgins, Senior Editor, Dark Reading

  • Microsoft Corp. (Nasdaq: MSFT) Kelly Jackson Higgins is the Executive Editor of Dark Reading. She is an award-winning veteran technology and business journalist with more than two decades of experience in reporting and editing for various publications, including Network Computing, Secure Enterprise ... View Full Bio

    Comment  | 
    Print  | 
    More Insights
  • Comments
    Newest First  |  Oldest First  |  Threaded View
    Sodinokibi Ransomware: Where Attackers' Money Goes
    Kelly Sheridan, Staff Editor, Dark Reading,  10/15/2019
    Data Privacy Protections for the Most Vulnerable -- Children
    Dimitri Sirota, Founder & CEO of BigID,  10/17/2019
    State of SMB Insecurity by the Numbers
    Ericka Chickowski, Contributing Writer,  10/17/2019
    Register for Dark Reading Newsletters
    White Papers
    Current Issue
    7 Threats & Disruptive Forces Changing the Face of Cybersecurity
    This Dark Reading Tech Digest gives an in-depth look at the biggest emerging threats and disruptive forces that are changing the face of cybersecurity today.
    Flash Poll
    2019 Online Malware and Threats
    2019 Online Malware and Threats
    As cyberattacks become more frequent and more sophisticated, enterprise security teams are under unprecedented pressure to respond. Is your organization ready?
    Twitter Feed
    Dark Reading - Bug Report
    Bug Report
    Enterprise Vulnerabilities
    From DHS/US-CERT's National Vulnerability Database
    PUBLISHED: 2019-10-22
    Man-in-the-middle vulnerability in Micro Focus Self Service Password Reset, affecting all versions prior to The vulnerability could exploit invalid certificate validation and may result in a man-in-the-middle attack.
    PUBLISHED: 2019-10-22
    Stephan Mooltipass Moolticute through 0.42.1 (and possibly earlier versions) has Incorrect Access Control.
    PUBLISHED: 2019-10-22
    totemodata 3.0.0_b936 has XSS via a folder name.
    PUBLISHED: 2019-10-22
    IBM DB2 High Performance Unload load for LUW 6.1 and 6.5 is vulnerable to a buffer overflow, caused by improper bounds checking which could allow a local attacker to execute arbitrary code on the system with root privileges. IBM X-Force ID: 165481.
    PUBLISHED: 2019-10-22
    A stack-based buffer overflow in the processPrivilage() function in IOS/process-general.c in nipper-ng 0.11.10 allows remote attackers (serving firewall configuration files) to achieve Remote Code Execution or Denial Of Service via a crafted file.