Our Engineers are certified, experienced and trained on the latest networking and security technologies. We offer services from the analysis of current infrastructure, offer services for our recommended solutions, to ongoing management and support. Our years of hands-on, design and implementation experience can provide the best solutions to address your unique networking, security and IT needs. Ashburn Consulting is staffed with network and security experts, holding a wide array of technical certifications; including Cisco CCIE/CCNP/CCSP/CCNA, CISSP, CEH, Palo Alto certs ACE/CNSE/PCNSE, Check Point CCSE+/CCSI, Sun Solaris, Linux, Microsoft, Juniper, ITIL v3, PMP.

Enterprise-wide Security Architecture

  • Network Security Architecture planning & implementation
  • Private IP Address planning
  • Tiered Network Security approach & Architecture
  • Wireless network planning & deployment
  • Secure Web Ecommerce Architecture
  • DMZs
  • Next Generation Security Architecture
  • PKI Architecture

Firewalls

  • Palo Alto Networks Next Generation Firewalls
  • Cisco PIX (All IOSs), ASA, Firewall Services Module
  • Checkpoint Firewall-1 3.0, 4.0, 4.1 & NG FP1 through AI
  • Nokia Checkpoint, Checkpoint Secure Platform
  • Juniper SRX Firewall
  • Firewall Load-Balancing & High-availability
  • Firewall Upgrades

Intrusion Detection/Prevention

We offer industry leading intrusion detection and prevention (IDP) solutions that provides defense in depth by analyzing network traffic and either blocking, replacing or alerting when suspicious activity is detected.

  • Palo Alto Networks Threat Protection / Intrusion Prevention
  • Cisco IDS
  • Cisco IOS IDS
  • Cisco IOS IPS
  • Cisco IDSM2
  • Sourcefire
  • Snort
  • ISS
  • Netforensics Event and Correlation

Server Security and Related Services

  • Windows, Solaris Server OS hardening
  • SSL Decryption and Inspection solutions
  • Cisco ACS
  • LDAP servers
  • PKI servers: Entrust, Arcot
  • RADIUS: Steel Belted Raduis
  • Loglogic
  • Security: TCP/Wrappers, IP Chains, IP Tables, Tripwire, Host Based Unix Security, TACACS+, Point-to-Point Tunneling Protocol (PPTP), Stunneld-wrappering IMAP via SSL, SSHD v1 and v2 server configuration, OPIE using S/key, low level and medium level system scanning using NMAP/Strboe/NesusD
  • Proxy Servers

VPN

  • Palo Alto Networks GlobalProtect VPN
  • Cisco VPNs (Firewalls & Router)
  • Cisco VPN 3000 concentrators (3002,3005,3015,3060)
  • Juniper SSL VPN
  • Netsceen VPN
  • CheckpointNortel Contivity VPN
  • Shiva VPN
  • V-One VPN Suite
  • MPLS VPNs

Content Security

  • Websense
  • Trend Micro Interscan Viruswall
  • Blue Coat
  • Cisco Content Services Switch (CSS)
  • Cisco Content Switch Module (CSM)
  • Cisco Content Engine
  • Cisco SSL Switch module
  • F5 Global & internal DNS, load-balancing, Application accelaration
  • WCCP
  • Server Farm Load-balancing
  • Mail Gateway solutions (Anti-spam, webmail, Internal mail)
  • Infoblox IP Address Management (IPAM), DHCP, DNS Solutions
  • Application Accelaration, WAN Optimization

Wireless Security

  • Cisco Wireless LAN Service Module (WLSM)
  • Cisco Wireless Solution Engine (WLSE)
  • Cisco Aironet 350, 1100,1200,1300,1400 series access points and
  • bridges
  • Wireless LAN Controller-based solutions
  • Cisco Access Point Security, Configuration & Implementation
  • Wireless Security using Cisco ACS Server Authentication & Encryption services
  • Airmagnet
  • Aruba Networks

Router/Switch-based Security

  • Cisco CBAC/IP inspect
  • Cisco Network Admission Control (NAC)
  • Access Control Lists (ACLs) on Cisco routers and Openroute GTX
  • Encrypting GRE Tunnels
  • Network Address Translation (NAT) on Cisco and Openroute GTX routers
  • Hardening Router and Switch Configurations
  • Private Vlans
  • MPLS VPNs