Stonewall Networks

Cornerstone Policy Server

How secure is your network? Without comprehensive Security Policy Management,that's a tough question to answer. Cornerstone, from Stonewall Networks, gives security conscious companies a network view of security and a single source for network security policy management. Why is this important? Without central management of network security resources, security settings can be misconfigured or out of sync with approved corporate security policies.

Cornerstone lets you accelerate the introduction of new network security policies and new service offerings with confidence. Less time is spent training and installing, thereby reducing operational costs. Even more importantly, your network is more secure, and it can be proven for audit and regulatory compliance.

Cornerstone provides centralized, consistent, and reliable management of security policies for all managed security devices. Security policies are evaluated, configured, and monitored for the entire network without the need for manual interaction with individual network devices. This approach saves time, reduces training, and provides unparalleled security when deploying new services over complex networks.

Use Cornerstone to set your security policies, and we'll take it from there. Cornerstone knows your equipment, providing multi-vendor support for today's networks. It can even help evaluate security policies to improve overall network security. Cornerstone scales with your network; as the network grows, Cornerstone grows too, using our patented TrueScale technology. TrueScale provides the flexibility to manage devices efficiently, effectively, and redundantly in networks of all sizes.

	Technology
	Benefits
	Features & Specifications
	Requirements / Configs
	Arrange for a Demo
	Download White Papers
	Brochures & Datasheets
	Technical Support

Features & Specifications

The Cornerstone product consists of the following parts:

* Supported + Unique

Features		Cornerstone
Policy Management - Market Space		Policy Mgmt - Devices + Services
General Features	Multi-vendor Support	*
	Topology Map	*
	Real Time Policy Auditing	*
	Inventory Management	*
	Inventory Monitoring	*
	Vulnerability Assessment	*
	Network-wide Policy Enforcement	+
	Policy Management	*
	Policy Monitoring	*
	Policy Versioning with Restore	*
	Easy Policy Deployment	*
	Centralized Management	*
	Secure Communication	*
	Best Practice Templates	*
	Graphical Policy Designer	*
Device Provisioning	Firewalls/NAT	*
	VPN Devices	*
	Routers/Switches/ACLs	*
	IDS/IPS	+
	Easy Device Addition	+
Service Provisioning	IPSec VPNs	*
	MPLS IP VPNs	+
	SSL VPNs	+
	VPN Key Mgmt	+
	Firewall Rules/ACLs	*
	IDS/IPS Rules	+
	Easy Service Addition	+
Attack Mitigation	Attack Reconstruction	+
	Attack Prevention	*
	Response Recommendation	+
	Automated Response	+
User Interface & Reporting	Graphic Reports	*
	Alerts / Notifications	*
	Web-based Report Console	+
Compatibility	Compatibility with NMS/Standards	*
	Regulation Compliance	*
	Integrated with SEM	+
	Integrated with Vulnerability Scanners	+
	Integrated with Issue Mgmt	+
	Stand-alone Product	*

Supported Devices

Access Control

Cisco IOS Routers
Cisco Catalyst switches w/ MSFC cards
IP-Filter / IP-Chains
IP-Firewall (BSD and Linux)

Firewall

Checkpoint VPN-1 NG
CipherOptics Security Gateway
Cisco IOS Firewall
Cisco Firewall Service Module (FWSM)
Cisco PIX Firewalls
Juniper Netscreen Firewalls

VPN

Checkpoint VPN-1 NG
CipherOptics Security Gateway
Cisco IOS Firewall
Cisco PIX Firewalls
Cisco VPN 3000 series concentrators
Cisco VPN Service Module (VPNSM)
Juniper Netscreen Firewalls

Intrusion

Intrusion Detection Systems (IDS)
Intrusion Prevention Systems (IPS)

Behavior Analytics

Security Event Managers (SEM)
Security Incident Managers (SIM)
Vulnerability Scanners