FaceTime Communications USG530 - web filtering appliance review
Controlling IM and P2P apps in the workplace is a serious problem, but FaceTime goes where UTM appliances fear to tread as nothing slips under its radar.
Many businesses that think implementing Acceptable Use Policies is a sure-fire way of controlling internet access in the workplace are just fooling themselves as increasingly IT savvy staff are finding ways around these restrictions. IM and P2P apps are now serious problem and yet the majority of gateway security appliances pay little more than lip service to them.
FaceTime has traditionally focused on this problem area and its USG (unified security gateway) appliances offer a wide range of facilities to monitor, manage and control IP and P2P apps. They go much further by also offering sophisticated defences against malware, which includes packet analysis plus packet sequence recognition and have a built in awareness of problem social networking sites such as Facebook and MySpace.
Optional web content filtering is on the menu and the latest version adds a raft of new features. On review we have the USG530, which has the muscle to handle up to 5,000 users. The price for the review system is for 1,000 users and includes a one year subscription to the malware and web filtering services.
There is an argument in favour of allowing some access to social networking sites in the workplace and FaceTime takes this into account as the appliance doesn't just offer a single filter category but lists all their various services. It is fully aware of services such as chat, alerts, gaming, dating and classifieds so you can fine-tune what access you wish to allow.
The latest code release adds more controls over web applications and can audit instant messages sent by Blackberry users over the Lotus SameTime service. Global objects simplify security policy configuration and greynet traffic can have time and bandwidth quotas applied to them. Awareness of Microsoft's OCS has been extended to controlling IM messages passing through Edge Servers.
The appliance has three Gigabit network ports with one to monitor all traffic via switch port mirroring, a second providing dedicated management access and a third for FaceTime's IM proxy. The monitoring port can only block IM traffic whereas the proxy port provides a much finer control as it can analyse instant messages in real time.
In This Article
The ultimate law enforcement agency guide to going mobile
Best practices for implementing a mobile device programFree download
The business value of Red Hat OpenShift
Platform cost savings, ROI, and the challenges and opportunities of Red Hat OpenShiftFree download
Managing security and risk across the IT supply chain: A practical approach
Best practices for IT supply chain securityFree download
Digital remote monitoring and dispatch services’ impact on edge computing and data centres
Seven trends redefining remote monitoring and field service dispatch service requirementsFree download