ESBC LTD , Nairobi, Kenya, Africa
Eden Square Business Center (ESBC) Confides Cyberoam for its Network Security
About ESBC LTD, ITeS
ESBC opened it first serviced offices in Nairobi at the beginning of April 2006 to cater to the
growing number of local and international businesses trying to break into or expand their
businesses across the East African region. It is the first company in the region to provide
such an extensive range of serviced and virtual office solutions.
ESBC Servers contained applications and data which were under constant threat from spyware attacks. So they needed a strong Firewall and IPS solution.
Mr. Frank Wamakonjio
The ICT Manager, Frank Wamakonjio at ESBC outlined the basic requirements saying,
“Internet is one of the most business critical resources for our organization.”
Securing the Perimeter
ESBC wanted to protect their servers by a strong firewall solution and access control management over all the WAN network resources.
Warding off Intrusion Attacks
ESBC was looking for an IPS tool to minimize the chances of cyber-criminals gaining visibility of internal network resources through hacking, remote exploits, Denial-of-service (DoS) attacks and other unpredictable attacks. The management was concerned that even a single successful intrusion could lead to unbearable consequences for their business. Moreover, any black-out of the network due to a DoS attack could cause the company to suffer significant revenue losses.
Malware and Spam Control
The organization was facing frequent breakdown issues due to annoying virus, root-kit,
worm, Trojan and spyware infections. These malware attacks which often took a blended
form through email attachments, PDF, Word documents etc. had the potential to corrupt
useful files and destroy important data.
Watching Website Access
The organization sought to keep an eye on and limit its users from accessing unproductive sites such as music, video, social networking, etc to help them in their work. Opening up access to these sites for all users resulted in bandwidth getting “choked”. They wanted a suitable content filtering solution with reporting feature for showing graphs and traffic results on specific sites accessed by its employees.
ESBC has evolved into an organization with independent networks at remote sites supporting many users. The primary challenges for ESBC were to provide access to sensitive data across a more secure and stable VPN. Internet is relied on profoundly to allow remote sites VPN access back to the main office.
Business Continuity Concerns
One major issue was the connectivity problem. "If Internet was down our business activities would come to a halt," Mr. Wamakonjio said. To avoid a single point of failure, multiple locations had multiple ISP links. So, multiple ISP links load balancing, and failover is also a critical need.
The Cyberoam Solution
In order to address their challenges, ESBC looked into a number of security products including Cisco ASA 5520 SSM AIP. However, after seeing a trial demo of Cyberoam, they took the decision of deploying the Cyberoam appliance - one (1) CR200i at the head office and two (2) CR50ia at the branch office in gateway mode.
The business benefits were as follows: