Abstract

Tolly Group Report #202144 (January 2002) validates iPolicy ipEnforcer 5000 as a carrier-class multi-service security appliance.

Zero-loss wire speed

Configured for 100 customers each running 100 firewall policies, 250 IDS signatures and four million URL entries, the appliance forwarded 2 Gbit/s full-duplex Gigabit Ethernet traffic with zero packet loss while handling all services concurrently.

Firewall capacity

It enforced 25,000 sessions/s with 500,000 active sessions across mixed packet sizes without throughput drop.

Intrusion detection

During the same traffic load the device detected 2,000 DoS attacks/s while maintaining wire speed.

URL screening

With full policies enabled it processed 39,158 HTTP GET/s for 4-KB objects and 45,183 GET/s for 64-byte objects at the generator’s limit, still forwarding 2 Gbit/s with zero loss.

Conclusion: ipEnforcer 5000 delivers sustained 2-Gbit performance, high session scale, real-time IDS and large-scale URL screening simultaneously, giving service providers a single platform for multi-tenant security without degrading network throughput.

Note: The company was acquired by Tech Mahindra in early 2007.