You make the rules, Corsa Red Armor enforces them in-line and all the time.
Corsa Red Armor enforcement is a radically simplified yet high performance hardware platform for CISOs, Security Operations & Network Administrators who are dissatisfied with their existing nx10G or 100G protection capabilities due to their extreme costs, inability to enforce large numbers of rules and operational complexity.
Corsa Red Armor installs into existing security architectures in 10 minutes and inter-operates with any anomaly detection or analytics technology providing the necessary 100G line rate enforcement as a transparent L2 bump in the wire.
Operators can manually or automatically program hundreds of thousands of 5-tuple rule sets into Red Armor appliances to have packets filtered with a wide choice of commands: accept, drop, rate-limit, copy, redirect, GigaFilterTM ACL and more.
What makes Corsa’s network security solution unique is that rules and policy can be operator defined for full control over scrubbing and filtering of traffic. Then the sheer packet processing power of Red Armor provides high capacity networks with enforcement at true 100G line-rate regardless of the number of programmed rules. This means policy enforcement against an onslaught of 64 Byte traffic arriving at 100 Gbps is never an issue.
With such ease of deployment and best-in-class economics, it can be added to any of today’s centralized or distributed DDoS protection architectures to turbo charge 100G DDoS defenses or used as a programmable enforcement point to protect key network links anywhere in the network.
Life of a Packet in the NSE7000
How Red Armor Enforcement Works
Transparent, in-line L3/L4 network security device
100,000s operator defined, programmable rules via REST
Over 220,000 IPv4 rules and 120,000 IPv6 rules
Fastest forwarding rate of any network security device
Full support for BGP Flow Spec standard (RFC5575)
GigaFilterTM ACL of up to 4,294,967,296 IPv4 source addresses