Cloud Native ComputingDevelopersDevOpsNewsSecurity

Calico’s Container Firewall Includes New Intrusion Detection And Prevention Capabilities


Tigera has launched a new version of Calico Cloud and Calico Enterprise to further strengthen its unified platform for cloud-native application security and observability by introducing real-time intrusion detection and prevention, integration with the Palo Alto Networks’ Panorama firewall management platform, and dynamic packet capture for troubleshooting microservices.

Calico’s Container Firewall adds new intrusion detection and prevention capabilities based on Snort signatures and improves security through the use of automated, real-time anomaly detection, enabling users to identify, quarantine and resolve issues.

With the integration, Panorama can now authorize access to Kubernetes workloads and endpoints managed by Calico Enterprise, without having to create new, customized operational workflows, which is complex and time-consuming. Workload access controls in Panorama can be leveraged to provide granular access controls to microservices and applications running in Kubernetes deployment that are using Calico Enterprise. The integration enables platform and security teams to use Panorama as a centralized view to manage and secure resources.

Calico’s new dynamic packet capture feature in dynamic service graph greatly simplifies troubleshooting of microservices to four steps, reducing issue resolution time from hours to minutes.

Both Calico Enterprise and Calico Cloud are available now.