Hillstone CloudHive
It has an advanced micro-segmentation solution designed specifically for cloud data centers, which will provide you with deep, seamless visibility and security in virtual environments, ensuring that network traffic is monitored and protected against threats before they can spread.
How it helps you
-
Security Microsegmentation: CloudHive allows traffic to be segmented between VMs, helping to prevent lateral movement of attackers within the network in the event of a security breach.
-
Rapid Incident Response: Integrated detection and response capability reduces incident response time, minimizing the impact of potential attacks.
-
Protection Against Internal Threats: CloudHive not only protects against external attacks, but also internal threats that could compromise the security of your data and applications.
With Hillstone CloudHive you will have
Complete Protection with Unmatched Visibility
Hillstone's CloudHive gives businesses a complete view of all traffic entering and leaving virtual machines on any monitored VM or port group. Sophisticated visualization tools allow network and security users to easily detect unusual patterns or use the same data for capacity planning.
Detailed Controls for Precise Blocking of Side Attacks
With granular controls and application intelligence, CloudHive brings additional peace of mind to enterprise computing. CloudHive accurately detects and blocks suspicious east-west connections within the data center or between hosts in different data centers. Application recognition provides businesses with maximum protection and minimizes false positives.
Platform Agnostic Approach for Maximum Flexibility
Direct support for VMware and OpenStack enables the same protection framework everywhere, regardless of the underlying cloud platform, allowing security teams to create a standardized set of policies and enforcement that spans public and private cloud environments.
Industry Leading Performance with Best TCO
By combining up to 1 Tbps performance that scales for any size workload with flexible CPU-based licensing, CloudHive provides businesses with better TCO in a solution that grows with workload needs.
Characteristics
Hillstone CloudHive technology provides micro-segmentation to secure every virtual machine (VM) in cloud deployments. This solution delivers deep, seamless security and visibility into virtual environments, ensuring network traffic is monitored and protected against threats before they can spread. Additionally, it is designed to offer complete visibility into East-West traffic and provide full protection against lateral attacks between VMs.
Visibility
The basis of
microsegmentation
Productivity
Makes microsegmentation
possible
Security
Zero Trust Best Practice
Advantages
-
Automatic Scalability: Adjust virtual security resources as needed.
-
Comprehensive Visibility: Provides a visual map of all data center and multicloud resources, including virtual networks and VMs.
-
Deep Integration: Integrates with cloud orchestration platforms such as VMware vCenter and OpenStack for real-time contextual visibility.
-
Flexible Security: Distribute and scale security service flexibly with minimal impact on performance.
CASE STUDY
Hillstone Solutions Protect the World's Largest Airport
Opened in fall 2019, it is projected to handle 72 million passengers in 2025 and reach 100 million in 2040. This airport is home to the largest single-building terminal in the world.
Challenges
Guarantee the comprehensive security of the airport's computer network
The complexity and scale of the airport data center, divided into multiple networks with specific functions, requires a strong security posture to protect all systems and data.
Provide high reliability and availability in network architecture
The network must comply with strict aviation regulations and service level agreements, ensuring continuous and uninterrupted operation of all airport services.
Security and visibility in virtualized environments
It is crucial to secure east-west traffic between virtual machines, which often remains unmonitored and unprotected, through logical segmentation and access control policies to maintain a secure posture across the network.
Solution
Hillstone CloudHive for security in virtualized environments
This tool offers micro-segmentation to monitor traffic in real time and provides complete visibility into application usage and security posture in virtualized environments. CloudHive enables detailed protection of east-west traffic between virtual machines and monitors threats within the Huawei Fusion cloud.
NGFW E-Series for perimeter
protection
Next-generation E-Series firewalls were deployed in the core and DMZ zones of data centers to protect the perimeter, manage access control, and provide visibility and control over applications, users, and devices, as well as threat detection and prevention.
Centralized management
platform
Hillstone provides a unified platform that reduces complexity by enabling centralized log data analysis and equipment management, ensuring comprehensive and efficient protection of customer's critical assets.
Results
-
High Reliability and Peace of Mind: The robustness of the solutions and the high availability deployment provide a safe and reliable operation for the airport, ensuring continuity of service without interruptions.
-
Meeting Unique Requirements: Flexible network topology, configuration and micro-segmentation technology meet the specific requirements of the airport's hybrid network architecture.
-
Simplified Management: Hillstone's configuration interface allows administrators to manage the network more efficiently, with clear logic that makes it easy to configure and modify policy rules in an agile way.