Press Release

Novell Announces Two New Directory-Enabled Internet Security Solutions

BorderManager Firewall Services 3, BorderManager VPN Services 3 Now Available As Stand-Alone Solutions

ATLANTA, GA (NetWorld+Interop Show) — Oct. 20, 1998 — At the Networld + Interop trade show today, Novell Inc. announced two new additions to its BorderManager™ family of Internet security management products based on Novell Directory Services® (NDS™) — BorderManager Firewall Services 3 and BorderManager Virtual Private Network Services (VPN) 3. BorderManager Firewall delivers high performance, directory-based security policy management, enabling customers of all sizes to protect confidential data and manage user access to Internet and intranet resources securely and cost-effectively. BorderManager VPN provides the most cost effective method for securely connecting remote offices, mobile users, customers and suppliers accessing confidential data over the Internet.

Both products, which have entered final beta testing, deliver seamless integration with NDS, allowing customers to enforce tight security policies for internal, external and remote access users while significantly lowering security administration costs through single sign on services and centralized management.

BorderManager Firewall Services 3 and BorderManager VPN Services 3 will ship as stand alone solutions or as integrated components of BorderManager Enterprise Edition 3, Novell's complete Internet security management suite designed for NDS networks. In addition to VPN and firewall, BorderManager Enterprise Edition 3, also in final beta testing, includes tightly integrated RADIUS authentication and caching services.

"Once again Novell has demonstrated the power of a network directory to simplify the management and use of network services," commented Phil Schacter, senior analyst, The Burton Group. "The BorderManager product family leverages NDS to manage identity and access control policies, regardless of whether the user is in the office or using an encrypted tunnel over the Internet. The multi-function BorderManager Enterprise Edition extends its services with single sign-on, VPN, firewall and application firewall support, making it a natural fit for securing the boundary of intranets for Novell's customers."

"At BellSouth Business Systems, BorderManager Enterprise Edition 3 allows me to control the users of the application proxy through a single sign-on into NDS," said Jim Graham, Network Architect for BellSouth Business Systems. "Additionally, BorderManager Enterprise Edition 3 allows my users to pre- fetch into cache the web sites we visit most during the day and we are seeing a cache hit rate of 85% plus. This provides an impressive performance foundation for the strong security services. "

"As companies continue to implement Web servers and intranets, the need for internal security becomes more necessary to protect confidential data," stated John Slitz, senior vice president of marketing, Novell. "Up to 80% of confidential data stolen is taken from within the intranet. With BorderManager Firewall and BorderManager VPN Services, Novell is leveraging our traditional strengths by integrating security management in NDS, making it easy for our customers to implement complete intranet, Internet and remote access security protection without taxing performance."

BorderManager Firewall Services 3

The security foundation of the BorderManager enterprise suite, BorderManager Firewall Services 3 provide directory-based, security policy management for protecting confidential data and managing user access to intranet and Internet content. The BorderManager firewall can be used by itself, or enhance an existing installed firewall by providing NDS-integrated user level access control and high performance internal security policy enforcement.

BorderManager Firewall Services 3 components are integrated with NDS and work together for maximum effectiveness. The components include:

  • Application proxy. Includes HTTP, FTP, Gopher, Telnet, Mail, News, Real Audio/Video, DNS and generic UDP and TCP application proxies. The HTTP application proxy supports Secure Sockets Layer (SSL) tunneling and user certificates, delivering an encrypted path between the client and server to protect information from eavesdroppers and vandals.

  • Circuit gateways. Includes two circuit gateways: a SOCKS v4 and v5 gateway, and the Novell IP Gateway. The SOCKS gateway enables the BorderManager Firewall to be configured as a component of a firewall solution, working in conjunction with firewalls from other vendors. It also allows the BorderManager firewall server to support NT, UNIX, and NetWare® SOCKS clients. The Novell IP Gateway, which uses native MS Winsock 2.0, includes both an IPX™/IP gateway and an IP/IP gateway. It allows IPX and IP clients to access TCP/IP services and provides transparent authentication to BorderManager Firewall Services.

  • Network Address Translation (NAT) and Packet filters. Restricts access to and from certain IP hosts; to and from certain IPX hosts; to certain Internet protocols and ports, such as HTTP, FTP, telnet, and Gopher; and NetWare Core Protocols. The stateful packet filter engine looks not only at the address of a packet, but also at the entire context of the session in which the packet is being sent. This makes it far more effective in identifying suspicious packets.
BorderManager Firewall Services 3 will provide a set of application programming interfaces (APIs) that enable Novell partners to integrate their security offerings with BorderManager products. BorderManager Firewall Services 3 includes a trial version of CyberPatrol, an industry-leading content filter that can deny outgoing access to certain Internet Web sites based on content.

BorderManager VPN Services 3

The secure remote connectivity component of the BorderManager Enterprise Edition suite, BorderManager VPN Services 3 deliver the most cost-effective method for securely connecting remote users, organizations, customers, and suppliers who need to access confidential data over the Internet. Companies can realize up to 80 percent cost savings by utilizing the Internet as an inexpensive alternative to dedicated private lines and company-owned modem pools.

BorderManager VPN Services 3 deliver the flexibility to implement three types of VPNs:

  • Site-to-site. Interconnect servers at two or more sites using the Internet as a link. In this way, you can connect independent LAN segments into a single cohesive WAN

  • Client/server. Permits dial-up users and cable modem users — running either IP or IPX protocol — to access VPN resources through a secure connection over the Internet. Best of all — and this is unique to BorderManager VPN Services 3 — users can access all resources from anywhere with a single sign-on transaction

  • Extranet. Connects corporate network with business partners' networks into a single cohesive extranet using the Internet to link sites.
BorderManager VPN Services 3 authenticate all users through NDS to ensure that only authorized users are permitted on the VPN. They support a variety of standard tunneling, encryption, and key exchange mechanisms, including IP SEC, SKIP, RC2, RC5, DES and 3DES, to provide a strong yet flexible security framework for VPN implementations.

Built for high performance, BorderManager VPN Services 3 can support up to 256 sites per tunnel and can service up to 1,000 dial-in users per server. They support symmetric multiprocessing (SMP) for increased speed. Additionally, BorderManager VPN Services selectively encrypt only the information sent to and from protected networks, as specified by the administrator, to ensure optimum use of bandwidth.

Availability

Novell will announce pricing at the time BorderManager Firewall 3 and BorderManager VPN 3 ships. The products are currently in controlled beta and will ship before the end of the year.

About BorderManager Enterprise Edition 3

Novell previously announced it has begun controlled beta testing of BorderManager Enterprise Edition 3, the complete Internet security management suite that enables businesses to leverage the power of Novell Directory Service (NDS) on NetWare, UNIX and NT networks. This standards-based suite allows organizations of all sizes to cost-effectively deploy industry leading firewall, virtual private networking (VPN), authentication and caching services for comprehensive security protection. Taking advantage of tight integration with NDS, BorderManager Enterprise Edition is the first security management solution to deliver secure single sign-on for users accessing confidential company information from any location - the Internet, intranet or extranet.

About Novell

Novell, Inc. (NASDAQ:NOVL) is the world's largest network software company and the leader in directory-enabled network solutions. Novell solutions make networks more manageable and secure and reduce the total cost of ownership for organizations of every kind and size. Novell's worldwide channel, developer, education and technical support programs are the most extensive in the network computing industry.

For information on Novell's complete range of products and services, contact Novell's Customer Response Center at (888) 321-4CRC (4272), or visit Novell's Web site at www.novell.com. Press may access Novell announcements and company information on the World Wide Web at www.novell.com/pressroom.

For more information:
Gordon Evans
Novell, Inc.
Phone: 408-577-6371
E-mail: gmevans@novell.com

Nan Stillinger
Cunningham Communication, Inc.
Phone: 650-858-3772
E-mail: nstillinger@ccipr.com