Policy Enforcement/NGFW via Multi-Hundred Gigabit Infrastructure
Time 12/10/19 10:20AM-11:10AM
Room Nottoway (4th)
How to degrade your multi-hundred gig NGFW firewall to 50GB/sec with UTM features (unified threat management). What features incur the largest performance penalty, how to optimize design elements (ECMP/MLAG) used by large firewalling clusters. The connectivity vs. security battles I’ve fought and lost. Detailed discussion of layered defenses at scale to include clusters, firewall modes of operation, and traditional L4 state appliances with basic ALG functions. The importance of IDS and some best practices for a successful deployment.
Speaker Jason Sullivan University of Arizona
Primary track Information Security
Secondary tracks Advanced Networking