NeuVector Full Lifecycle Container Security

By NeuVector by SUSE

Certified enterprise ready

Offers the only cloud-native Kubernetes security platform delivering uncompromising end-to-end protection from DevOps vulnerability protection to automated run-time security, and featuring a true Layer 7 container firewall.

Software version

Runs on

OpenShift 4.6 - 4.18

Delivery method

Operator

Highlights

Runs on OpenShift
Certified operators
Fully containerized
Vendor supported
Vulnerability scans

Capabilities level

Basic install
Seamless upgrades
Full lifecycle
Deep insights
Auto pilot

Last updated

7/24/2023, 12:15 PM

Company information

NeuVector by SUSE

Terms

Container-based environments, operating at highly automated scale, leave DevOps and security teams blind to attacks in east-west traffic and with zero network visibility. NeuVector delivers protection without compromise, from Dev to production, with automated security for Kubernetes and OpenShift and the only container firewall with packet-level interrogation and enforcement.

Container Firewall

Detect and mitigate application threats with Layer 7 network inspection. Application level attacks such as DDoS and DNS on containers are detected and prevented. Real-time detection and alerting adds a layer of network security to the dynamic container environment. Protects containers against attacks from internal and external networks. Prevent data stealing attacks which use DNS and ICMP tunneling techniques. Automatically captures packet used in an attack.

Workload Protection

NeuVector discovers the normal behavior of container processes, file system, and network activity and automatically builds a security policy to protect container based services. Using Layer 7 network inspection, unauthorized connections between containers or from external networks can be blocked without disrupting normal container sessions.

Vulnerability Scanning and Compliance Management

NeuVector automates security for the entire CI/CD pipeline, from Build to Ship to Run. Use the Jenkins plug-in to scan during build, monitor images in registries and run automated tests for security compliance. Prevent deployment of vulnerable images with admission control, but also monitor production containers. Run-time vulnerability scanning for containers, hosts, and orchestration platforms. Audits host and container security with Docker Bench and Kubernetes CIS Benchmark for security tests.

Pricing summary

Plans starting at

View all pricing options

Production node license

Up to 4 vCPU nodes

Supports Ubuntu, CentOS/Red Hat; including all RHEL versions (6/7/8)

Additional resources

Want more product information? Explore detailed information about using this product and where to find additional help.

DOCUMENTATION

NeuVector Kubernetes Security Guide

Learn how attacks can target Kubernetes deployments. Discover how to secure containers and Kubernetes systems resources at run-time. See how the NeuVector multi-vector container firewall protects Kubernetes deployments.

DOCUMENTATION

NeuVector Container Segmentation Guide

Learn similarities and differences between traditional container segmentation patterns. Discover why the ‘DMZ is dead’. Compare container segmentation approaches such as Network Policy, Service Mesh, and Container Firewalls.

DOCUMENTATION

NeuVector Cloud-Native Container Firewall

Learn security issues for container deployments. Discover what it takes to be a truly ‘cloud-native’ container firewall. Compare container firewalls vs. next generation firewalls and web application firewalls. See features in a container firewall.

DOCUMENTATION

Zero Trust Security Guide

Zero Trust for Dummies

NeuVector by SUSE

Visit the homepage of the provider.