iPolicy Networks, inventor of the Intrusion Prevention Firewall for real-time network protection, today announced its iPolicy-6420 Intrusion Prevention Firewall appliance has been certified "Up to Spec" by The Tolly Group. Furthermore, in a head-to-head comparison, the tests showed that the iPolicy-6420 dramatically outperforms the comparably rated Fortinet FortiGate-3600 Anti-virus Firewall appliance in critical areas such as UDP frame loss, TCP/UDP connection rates and maximum concurrent TCP connections when multiple security applications are enabled. This report demonstrates that the iPolicy-6420 Intrusion Prevention Firewall is dramatically superior in making the network the first line of defense against today's external and internal security threats. In particular, the iPolicy-6420 proved able to complete very high rates of connections and TCP application (layer 7) transactions with a fully loaded network. The FortiGate-3600 completed very few new connections in a similarly loaded network and failed to complete a single TCP application transaction. The results suggest that the FortiGate-3600 itself creates a denial of service condition when there is legitimate heavy traffic.
The iPolicy-6420 is based on a new generation patent-pending Single Pass software architecture. iPolicy Networks commissioned the lab tests to independently verify the performance differences between a multi-function security appliance based on a traditional architecture such as the FortiGate-3600, and an appliance based on the Single Pass architecture such as the iPolicy-6420.
"We are pleased to receive such positive, objective, third-party validation of the high performance of our product, which is based on our patent-pending Single Pass Inspection Engine(TM) technology," said Prabhu Goel, chairman and CEO of iPolicy Networks. "Customers can be assured that the specifications, performance, quality and reliability of our product will meet their expectations. The Tolly Group's 'Up to Spec' certification is the first of many more industry certifications to come, which will further validate iPolicy Networks' commitment to quality, performance and customer satisfaction."
While breadth and depth of security applications are very important criteria when assessing the ability of a device to protect a network, performance cannot be ignored. Indeed, performance measurements are essential for understanding the ability of multi-function security appliances to protect high-speed networks from external and internal threats without degrading throughput or quality of service. Parameters such as sustainable throughput, new connection rate and the number of simultaneous sessions supported when all security functions are enabled, measure a security appliance's ability to deliver protection without compromising network performance while maintaining service quality. The testing methodology used by The Tolly Group examined these factors in simulated real-world conditions for varied frame rates and packet sizes, including an Internet traffic mix (IMIX).
UDP Frame Loss -- Sustainable Throughput
Frame loss measures the number of packets that are dropped by the device under test. Low frame loss at high throughput is critical for security devices that protect the multi-gigabit data links in large enterprises and service provider networks. The iPolicy-6420 appliance demonstrated near zero percent frame loss for all tests while Fortinet's FortiGate 3600 suffered as much as a ninety percent frame loss when tested with 256-byte packets at the rated 4 Gigabits per second traffic rate. Frame loss percentage was measured on both appliances with firewall, IDS/IPS, URL filtering and anti-virus applications enabled.
TCP/UDP New Connection Rate
The TCP/UDP connection rate measures the number of new user connections per second that the device under test can service. Security devices with sustainable high TCP/UDP connection rates will not be bogged down by large numbers of concurrent users or by denial of service attacks that could crowd out legitimate users. The iPolicy-6420 has been proven to be in a class by itself when compared with previous generation architecture security appliances such as the FortiGate-3600. The IPolicy-6420 supported 100% of all new TCP connections when 30,000 new TCP connections per second were attempted, with firewall, IDS/IPS, URL filtering and anti-virus applications enabled. This is 200 times the number of successful new connections per second of the FortiGate-3600, which completed just 0.5% of the new TCP connections under the same conditions. To demonstrate multi-function security appliance behavior at very high connection rates, Tolly Group test engineers attempted 90,000 new UDP sessions per second at a throughput of 1 gigabit per second using 1,500-byte UDP frames. The iPolicy-6420 sustained 89,995 new connections per second, dramatically higher than the FortiGate-3600, which could only sustain 2,577 new connections per second.
Tags: Spyware Doctor, Spyware Removers, downloads, software, trial, free, free Spyware Doctor download, computer doctor, secure pc, spyware protection
