1

Copyright © 2013-2014 Gigamon. All rights reserved.

Enabling Comprehensive Visibility and Real-Time Threat ProtectionFireEye // Technology Solution Brief

The integration of the FireEye Threat Prevention Platform and Gigamon Visibility Fabric offers customers flexible deployment options and scalability up to 10Gb of traffic throughput for optimal threat protection.

The Challenge of Today’s Advanced ThreatsThe next generation of cyber attacks has changed radically and are targeted to get something valuable—sensitive, personal information, intellectual property, authentication credentials, insider information. Each attack is multi-staged with steps to get in, to call back from the compromised network, to spread laterally, and to get valuables out. It is not enough to simply put up a firewall or intrusion prevention system because legacy solutions cannot stop advanced persistent threat (APT) attacks.

A robust solution needs to have comprehensive visibility across the network traffic to protect valuable assets, keep malware away and ensure security tools are used to their full potential. The right solution needs the flexibility to be deployed wherever it is required, inline or out-of-band. The FireEye and Gigamon joint solution offers customers flexible deployment options and scalability up to 10Gb of traffic throughput for optimal threat protection.

The FireEye and Gigamon Joint SolutionFireEye and Gigamon have collaborated to offer customers one of the most flexible deployment options coupled with robust performance. The combination of the FireEye Threat Preventative Platform and the Gigamon Visibility Fabric architecture ensures traffic is analyzed and threats are detected in real time, helping network and resources remain safe by filtering unwanted network traffic, and load balancing across multiple FireEye appliances for enterprise customers.

Out-of-band Deployment • The GigaVUE Visibility Fabric node aggregates, filters, and replicates traffic

flows sending relevant production traffic across multiple FireEye platforms

• Traffic aggregation and replication sends data from all connected FireEye platforms at line rate without data loss

Inline Deployment • 10Gb data stream flows for distribution up to eight 1Gb inline FireEye platforms

• Gigamon’s fabric node pushes live production traffic and re-routes it to inline FireEye platforms

• FireEye platforms in active mode are ready to take action (quarantine, block, etc.)

Key Benefits

• Enables scalable threat protection up to 10Gb: Ability to distribute 10Gb traffic across multiple FireEye platforms

• Provides adaptable traffic visibility: Aggregates network traffic for FireEye analysis to gain pervasive visibility across physical and virtual environments

• Lowers total cost of ownership: Load balancing and distribution capabilities help ensure thorough traffic analysis and optimal device performance and longevity

Integrated Solution

• The FireEye platform and the Gigamon® Visibility Fabric™ architecture

• Traffic is analyzed and threats are detected in real time and if the deployment is inline, blocking actions are taken by FireEye

• Optimizing current FireEye platforms through link consolidation and traffic filtering

Copyright © 2013-2014 Gigamon. All rights reserved. Gigamon and the Gigamon logo are trademarks of Gigamon in the United States and/or other countries. Gigamon trademarks can be found at

www.gigamon.com/legal-trademarks. All other trademarks are the trademarks of their respective owners. Gigamon reserves the right to change, modify, transfer, or otherwise revise this publication without notice.

Gigamon® | 3300 Olcott Street, Santa Clara, CA 95054 USA | PH +1 (408) 831-4000 | www.gigamon.com

Enabling Comprehensive Visibility and Real-Time Threat ProtectionFireEye // Technology Solution Brief

3024-05 07/14

About FireEyeFireEye has invented a purpose-built, virtual machine-based security platform that provides real-time threat protection to enterprises and governments worldwide against the next-generation of cyber attacks. These highly sophisticated cyber attacks easily circumvent traditional signature-based defenses, such as next-generation firewalls, IPS, anti-virus, and gateways. The FireEye Threat Prevention Platform provides real-time, dynamic threat protection without the use of signatures to protect an organization across the primary threat vectors and across the different stages of an attack life cycle. The core of the FireEye platform is a virtual execution engine, complemented by dynamic threat intelligence, to identify and block cyber attacks in real time. FireEye has over 1,900 customers across more than 60 countries, including over 130 of the Fortune 500.

Learn MoreFor more information on FireEye contact:

About GigamonGigamon provides an intelligent Visibility Fabric™ architecture to enable the management of increasingly complex networks. Gigamon technology empowers infrastructure architects, managers and operators with pervasive visibility and control of traffic across both physical and virtual environments without affecting the performance or stability of the production network. Through patented technologies, centralized management and a portfolio of high availability and high-density fabric nodes, network traffic is intelligently delivered to management, monitoring and security systems. Gigamon solutions have been deployed globally across enterprise, data centers and service providers, including over half of the Fortune 100 and many government and federal agencies.

Learn MoreFor more information on Gigamon contact:

FireEye1440 McCarthy Blvd.Milpitas, CA 95035phone: +1 (877) FIREEYE (877-347-3393)www.FireEye.com

Gigamon 3300 Olcott StreetSanta Clara, CA 95054 Phone: +1 (408) 831-4000www.gigamon.com

Figure 1: Muti-tiered security with pervasive visibility