Partner Integration

StealthWatch and Brocade Interoperability

Download Integration Brief

Empower Routers And Switches for Precise Mitigation

StealthWatch uniquely extends the value of your existing network infrastructure by leveraging INM's Closed Loop Remediation capabilities. Combine StealthWatch's "rapid response with surgical precision" capability with Brocade INM's governance of existing routers and switches and this results in a pervasive and precise mitigation solution. Think of this precise mitigation solution as a cost-effective alternative / complement to an expensive, inline IPS deployment. Not just that, but this precise mitigation solution also promotes network performance and availability by eliminating or minimizing the number of bottlenecks on your network. Further extend the value of your routers and switches beyond routing traffic to also protect your network.

"NBA (Network Behavior Analysis) eliminates the cost of having to put an IPS on every segment by directing remediation into the existing infrastructure (i.e., switches, routers and security devices) as a result of anomalies that have been detected, so IPSs can be deployed only in high-risk areas such as the perimeter, DMZ, business unit gateways and segments that house sensitive data"1

Adding Brocade's INM as a StealthWatch partner not only provides a precise mitigation solution for your enterprise, but also demonstrates how network management tools and network behavior analysis technologies can complement one another.

How Does It Work?

Through the StealthWatch Management Console (SMC), StealthWatch provides optional mitigation capabilities that run automatically or under proper authorization only. Once StealthWatch raises an alarm configured for mitigation, this integration directs the Brocade INM to block a particular IP address from communicating on the corporate network. The Brocade INM then instructs all governed routers and switches to block the offending host, squelching any potential threats to both network security and network performance. Because routers and switches are widely deployed across the corporate network, this integration provides much broader and more pervasive mitigation coverage than could be provided by a typical IPS deployment.

StealthWatch provides additional value by offering a configurable window of time within which the host remains blocked. After such window of time has elapsed, the host becomes "unblocked" and regains access back into the network by the Brocade routers and switches. This blocking automation provided by the StealthWatch SMC results in reduced helpdesk costs and higher quality of service, ensuring that users are not left stranded on an "IP island" for hours or even days at a time.

Other StealthWatch Benefits

Operates Out of Band to Provide Enterprise-Wide Visibility

StealthWatch provides enterprise-wide visibility into host and network behaviors including graphical representation of traffic and attention-focusing visual cues.

Cost-Effective and Highly Scalable Solution

StealthWatch provides a cost-effective alternative for both securing and understanding what you don't already know about your network.

User Accountability

StealthWatch promotes ever increasing levels of accountability by integrating with many common authentication stores to identify users, not just IP address.

1Yankee Group, "Internal Threat Protection with Net-Based Detection, Prevention and Behavioral Systems," Jan. 2006