tnsr-logo-white footer v1.4

Site-to-Site IPsec VPN

tnsr-logo-white footer v1.4

Edge / Border / Core Router

tnsr-logo-white footer v1.4Port Mirror

Next Gen Firewalls (NGFW) - the merger of firewalls, intrusion prevention systems, and web proxies - have been security staples for a decade now. But, have they gotten the job done? Pretty much every major organization hit by a newsworthy breach had an NGFW. The reality is that NGFWs are bloated, expensive, and ineffective. Time for a rethink. And forward-thinkers are figuring it out.

What happens when your data and workloads are moved to the cloud and/or SaaS providers? What happens when a growing number of your key development, marketing, sales, and support personnel work remotely? This is what happens: each laptop, phone, and IoT device becomes the “perimeter”. And for that to work, security moves to the edges. Malware and threat checks? Done on each endpoint. Authentication and authorization? Performed in the cloud - public, private or hybrid - by a centralized, high capacity access control list (ACL) firewall/router. The “new” NGFW. Now network, application, and user-level access can be granted and revoked via IT automation based on specific conditions, e.g., policy changes or violations. The problem, however, becomes one of ACL scale. You may need tens or hundreds or thousands of ACLs. Performing this feat is traditional hardware solutions is nearly impossible. TCAM (ternary content-addressable memory), which can search its entire contents in a single clock cycle, doesn’t scale.

  • TNSR uses Vector Packet Processing (VPP) to crush traditional firewall scale limits. Support for up to 250,000 ACLs with negligible performance impact - organizations can confidently move entire data centers to the cloud with high-scale, easy-to-administer granular / dynamic access control
  • High performance firewall - at 1, 10, 40, 100 Gbps, even 400 Gbps - for a fraction of the cost of contemporary alternatives
  • Additionally, TNSR enables flexible management - familiar CLI or Ansible®, SaltStack®, Puppet®, Chef™programmatic configuration and IT automated management via REST API - slashing traditional operating costs and speeding adds, moves and changes
  • Flexible deployment options - bare metal, VM, AWS cloud, Microsoft Azure cloud
  • Flexible licensing - perpetual or subscription

Key Features

Fully-featured secure-networking software stack

Engineered integration of Vector Packet Processing (VPP), Data Plane Development Kit (DPDK), Free Range Routing (FRR), strongSwan key management, RESTCONF API, Clixon configuration management.

Extreme scale and capacity for modern security evolution

16 million+ active connections, 250,000+ ACLs (L2 MAC/IP, L3, L4), negligible performance impact.

Super-scale IPv4/v6 NAT

Port forwards, 1:1 NAT, Outbound NAT, NPT, NAT44, MAP-T/MAP-E, DS-Lite.

Traditional NGFW feature integration (for legacy transition)

VPP host stack enables entire networking and security functions to be injected into software packet processing, e.g., Snort IDS/IPS, IP reputation feeds, threat intelligence feeds, etc.

 

 

 

Benefits

price performance resize
deployment managed
vendor freedom v1.2

Unmatched Price-Performance

Software-based packet processing and h/w acceleration integration turbo-charges performance and delivers real-world IMIX, site-to-site VPN price-performance.

Agile Networking Deployment and Management

Deploy TNSR on our hardware or yours, or in the cloud - fast and easy installation, configuration and operations management via CLI or IT automation options.

No More Vendor Lock-in

Based on open source software - eliminating costly, slow to update, proprietary hardware or management tooling.

Super Scale ACL Firewall

Want to learn more?          Interested in a trial?          Ready to discuss a solution?

More Information

We’re happy to answer any questions you may have verbally - just use one of the CTAs above. But, if you prefer to do your own research by reading, these assets should be helpful!