NetDefend Firewall UTM Services

Similar documents
UTM Firewall Registration & Activation Manual DFL-260/ 860. Ver 1.00 Network Security Solution

NetDefend UTM Firewall Series

Future-ready security for small and mid-size enterprises

2 ZyWALL UTM Application Note

Security+ Guide to Network Security Fundamentals, Third Edition. Chapter 3 Protecting Systems

Activating Intrusion Prevention Service

Hardening the Education. with NGFW. Narongveth Yutithammanurak Business Development Manager 23 Feb 2012

Defense-in-Depth Against Malicious Software. Speaker name Title Group Microsoft Corporation

Securing Your Business Against the Diversifying Targeted Attacks Leonard Sim

Managing SonicWall Gateway Anti Virus Service

USG2110 Unified Security Gateways

Data Sheet: Endpoint Security Symantec Multi-tier Protection Trusted protection for endpoints and messaging environments

CA Host-Based Intrusion Prevention System r8

Barracuda Advanced Threat Protection. Bringing a New Layer of Security for . White Paper

The Eight Components of a Strong Cyber Security Defense System

Symantec Endpoint Protection

Symantec Protection Suite Add-On for Hosted Security

All-in one security for large and medium-sized businesses.

AT&T Endpoint Security

Cisco IOS Inline Intrusion Prevention System (IPS)

Comparison of Firewall, Intrusion Prevention and Antivirus Technologies

Cisco s Appliance-based Content Security: IronPort and Web Security

SteelGate Overview. Manage perimeter security and network traffic to ensure operational efficiency, and optimal Quality of Service (QoS)

Cisco ASA 5500 Series IPS Edition for the Enterprise

KASPERSKY ANTI-MALWARE PROTECTION SYSTEM BE READY FOR WHAT S NEXT. Kaspersky Open Space Security

1110 Cool Things Your Firewall Should Do. Extend beyond blocking network threats to protect, manage and control application traffic

Exam : Title : symantec small Business security. Version : DEMO

KERIO TECHNOLOGIES KERIO WINROUTE FIREWALL 6.3 REVIEWER S GUIDE

INSIDE. Symantec AntiVirus for Microsoft Internet Security and Acceleration (ISA) Server. Enhanced virus protection for Web and SMTP traffic

WatchGuard Total Security Complete network protection in a single, easy-to-deploy solution.

Venusense UTM Introduction

Key Features. DATA SHEET

CA Security Management

Enterprise Cybersecurity Best Practices Part Number MAN Revision 006

CISCO NETWORKS BORDERLESS Cisco Systems, Inc. All rights reserved. 1

A Unified Threat Defense: The Need for Security Convergence

Training UNIFIED SECURITY. Signature based packet analysis

Symantec Network Access Control Starter Edition

ANATOMY OF AN ATTACK!

INCIDENTRESPONSE.COM. Automate Response. Did you know? Your playbook overview - Malware Outbreak

Firefly Perimeter ( vsrx ) Technical information 12.1 X47 D10.2. Tuncay Seyran

Cyber Security. Our part of the journey

Building Resilience in a Digital Enterprise

CompTIA E2C Security+ (2008 Edition) Exam Exam.

UTM 5000 WannaCry Technote

Chapter 9. Firewalls

Symantec Network Access Control Starter Edition

ForeScout Extended Module for Symantec Endpoint Protection

ACS-3921/ Computer Security And Privacy. Chapter 9 Firewalls and Intrusion Prevention Systems

Symantec Client Security. Integrated protection for network and remote clients.

Security Gap Analysis: Aggregrated Results

Cisco Self Defending Network

SaaS Flyer for Trend Micro

Sourcefire Solutions Overview Security for the Real World. SEE everything in your environment. LEARN by applying security intelligence to data

Agile Security Solutions

Symantec Endpoint Protection

CS 356 Operating System Security. Fall 2013

Kaspersky Open Space Security

Microsoft Internet Security & Acceleration Server Overview

Data Sheet: Endpoint Security Symantec Network Access Control Starter Edition Simplified endpoint enforcement

Securing Today s Mobile Workforce

ISO27001 Preparing your business with Snare

Cyber security tips and self-assessment for business

Cisco Security. Advanced Malware Protection. Guillermo González Security Systems Engineer Octubre 2017

NETWORK THREATS DEMAN

GFI Product Comparison. GFI WebMonitor 2015 vs. McAfee Web Gateway

Protect Your Endpoint, Keep Your Business Safe. White Paper. Exosphere, Inc. getexosphere.com

NETWORKING &SECURITY SOLUTIONSPORTFOLIO

Real protection against real threats

Advanced Malware Protection. Dan Gavojdea, Security Sales, Account Manager, Cisco South East Europe

TOP 10 Vulnerability Trends for By Nevis Labs

THE CRITICAL COMMUNICATIONS COMPANY CYBER SECURITY AS A SERVICE

GLOBALPROTECT. Key Usage Scenarios and Benefits. Remote Access VPN Provides secure access to internal and cloud-based business applications

Symantec Network Access Control Starter Edition

IBM Proventia Network Multi-Function Security MX1004

Carbon Black PCI Compliance Mapping Checklist

Projectplace: A Secure Project Collaboration Solution

IBM Next Generation Intrusion Prevention System

CIH

To Renew or Change? Cloud-based Antivirus for Busy IT People

Gladiator Incident Alert

Seqrite Endpoint Security

Cisco Network Admission Control (NAC) Solution

FIREWALL BEST PRACTICES TO BLOCK

Internet Scanner 7.0 Service Pack 2 Frequently Asked Questions

WatchGuard XTMv Setup Guide

IBM Global Technology Services Provide around-the-clock expertise and protect against Internet threats.

Symantec Network Security 7100 Series

AKAMAI CLOUD SECURITY SOLUTIONS

INCIDENTRESPONSE.COM. Automate Response. Did you know? Your playbook overview - Unauthorized Access

Cracked BitDefender Client Security 2 Years 20 PCs lowest price software ]

Sales Training

Security Policy (EN) v1.3

GFI product comparison: GFI MailEssentials vs. Barracuda Spam Firewall

INCIDENTRESPONSE.COM. Automate Response. Did you know? Your playbook overview - Elevation of Privilege

A WICK HILL & FINJAN WHITE PAPER

Chapter 10: Security. 2. What are the two types of general threats to computer security? Give examples of each.

What to Look for When Evaluating Next-Generation Firewalls

Getting over Ransomware - Plan your Strategy for more Advanced Threats

DELL SonicWALL Understanding Trend

Transcription:

NetDefend Firewall UTM Services Unified Threat Management D-Link NetDefend UTM firewalls (DFL-260/860/1660/2560/2560G) integrate an Intrusion Prevention System (IPS), gateway AntiVirus (AV), and Web Content Filtering (WCF) for superior Layer 7 content inspection protection. D-Link firewalls also use a hardware accelerator approach to increase IPS and AV throughput, and a web surfing control database containing millions of URLs for WCF. IPS, AntiVirus and URL database real-time update services protect your enterprise network from application exploits, network worms, malicious code attacks, and provide everything you need to manage employee Internet access behavior. Maintaining an effective defense against the various threats originating from the Internet requires that all three databases used by the UTM firewall are kept up-to-date. In order to provide a robust defense, D-Link offers NetDefend Firewall UTM Services which include distinct NetDefend service updates for each aspect of your defenses: IPS, AntiVirus, and WCF. NetDefend Firewall UTM Services ensure that each of your UTM firewall s service databases is always accurate and current. Anti-Virus Web Content Filtering Intrusion Prevention System User Authentication VPN Availability High Performance ZoneDefense Technology D-Link UTM Firewall Hardware Acceleration Technology Traffic Shaping High Port Density Load Balancing Each Device Features: Real-Time AntiVirus Gateway Inspection (AV) Professional Intrusion Prevention System (IPS) Automatic Signature Update Zero Day Attack Protection Web Surfing Management (WCF) Low Cost Licensing Using Per-Firewall Service Maintenance

NetDefend Intrusion Prevention System (IPS) Subscription D-Link s IPS service adopts a unique technology component-based signatures, which are built to recognize and protect against all varieties of known and unknown attacks, and which address all critical aspects of an attack or potential attack including payload, NOP sled, infection, and exploits. In terms of signature coverage, the IPS database includes attack information and data from a global attack sensor-grid and exploits collected from public sites such as the National Vulnerability Database and Bugtrax. D-Link is committed to delivering high quality IPS signatures by constantly creating and optimizing NetDefend signatures via the D-Link Auto-Signature Sensor System. Without overloading existing security appliances, D-Link IPS signatures ensure a high ratio of detection accuracy and the lowest ratio of false positives. My D-Link My D-Link provides a registration and management platform for all D-Link customers. D-Link customers need to register their firewall to receive IPS update service from the NetDefend Center s My D-Link. The current status of all registered products will be presented, including Model Names, MAC addresses, Serial Numbers, Registration dates, and IPS Service Expiration dates. Customers can easily maintain all firewalls registered under My D-Link. NetDefend Live The NetDefend Center includes a NetDefend Live service for our customers. NetDefend Live is a platform for providing information about potential security breaches and associated advisories. When D-Link Security Center discovers new exploits and releases new signatures, associated security advisories will be simultaneously updated. This update frequency is provided on a 7x24x365 basis. The main purpose of NetDefend Live is to help our customers know more about new signatures and vulnerabilities. MIS departments can use NetDefend Live as reference to uproot threats and patch vulnerabilities within the enterprise before they are exploited. With NetDefend firewalls as the first line of defense and NetDefend Live as the second, D-Link helps customers to counteract emerging network threats promptly, before they have an impact on business.

Features and Benefits Focus on Attack Payload, not Attackers or IP Addresses The IPS scan engine is an in-depth inspection of data from Layer 2 to Layer 7 protecting against both false positives and false negatives and preventing various types of network-based threats with a high degree of accuracy. IM and P2P Management D-Link s IPS service provides signatures to manage Instant Messaging (IM) and Peer-to-Peer (P2P) applications, so that you control what IM and P2P applications are blocked or allowed in your network. Zero Day Attack Protection IPS captures variations of attacks and stealthy malicious traffic to prevent outbreaks of these threats without creating unnecessary new signatures while still protecting against Zero-Day attacks. Continuous Automatic Signature Updates All IPS signatures are continuously updated automatically and made available through D-Link update servers worldwide. The service keeps your IPS signature database as current as possible at the outside of new threats. Comprehensive IPS Signature Database Protect the system against network attacks using over 17,000 signatures as well as protocol anomaly inspection. Complete IPS Signature Advisory Complete IPS logs with vulnerability ID numbers, severity levels, attack descriptions, and recovery solutions enable MIS personnel to know about and respond quickly to network attacks.

NetDefend AntiVirus (AV) Subscription NetDefend UTM firewalls implement stream-based virus scanning technology without first caching incoming files, thus increasing inspection performance and easing network bottleneck nightmares while enabling powerful virus defense capabilities. D-Link s firewalls use virus signatures from the known, respected antivirus company Kaspersky Labs to provide our customers with prompt signature updates and reliable, accurate antivirus signatures. Using a built-in extreme-performance AV acceleration engine together with stream-based virus scanning technology, NetDefend UTM firewalls block viruses and malware before they ever reach your network s desktops or mobile devices. NetDefend firewalls create a safer network environment for companies of all sizes, from SMBs to enterprises. Features and Benefits Up-to-date Protection Kaspersky Labs is the market leader in AV signature creation, providing the fastest response to the most dangerous viruses, Trojans, worms, and spyware programs, and D-Link firewall AV defenses rely on Kaspersky Labs. Optimized Performance D-Link s AntiVirus solution has a built-in extreme-performance AV acceleration engine that allows D-Link s UTM firewalls to perform with a much higher throughput than other antivirus-capable UTM firewalls on the market. Streaming-based Pattern Matching A streaming-based scan engine inspects all payloads and matches the signature packet-by-packet. File-based AV protection will never encounter a file-size limitation since D-Link firewalls do not need to store whole files in memory for inspection purposes. Fast Response Time All AntiVirus signatures are updated hourly and made available through D-Link update servers worldwide. Emergency signature releases protect against the latest, most virulent virus variations. Comprehensive AntiVirus Signature Database NetDefend s proactive signature database protects each system against network worms, Trojans, and spyware with over 12,000 signatures covering all Wild List threats and thousands of well-known OS exploits and application vulnerabilities.

Complete AntiVirus Signature Advisory Complete antivirus logs with issue dates, behavior and technical details allow MIS personnel to become aware of and immediately respond to virus threats and infections. Mobile Internet Branch Branch Server Farm Department Corporate Department

NetDefend Web Content Filtering (WCF) Subscription Web surfing control is becoming a critical concern for businesses of all sizes. D-Link s Web Content Filtering (WCF) service enforces access protection and management policy in terms of Internet resource allocation for your organization. NetDefend Web Content Filtering helps MIS monitor, manage, and control employee usage of and access to the Internet. It puts management back in control, enabling a more business-orientated and cost effective use of sometimes scarce Internet resources. Organizations experience significant cost savings through: 1) A reduction in wasted staff time by reducing inappropriate web surfing. 2) Reduced Internet access costs and bandwidth savings by limiting and controlling non-business related uses, thus improving network response. 3) Reducing legal exposure to workplace conflicts and liabilities (e.g. sexual harassment cases or child pornography and the adverse publicity that such incidents can generate). 4) Reduced costs in recovering from attacks as much less inappropriate content will even be allowed to enter the network. Features and Benefits Global Index Servers Global index servers maintain databases of millions of URLs and collect real-time website information in order to keep the data as current as possible. Multiple servers worldwide enhance performance and maximize service availability wherever a NetDefend firewall is installed. Performance Optimized D-Link implements multiple index servers to enhance performance capacity and maximize service availability. Categories of recently visited websites are cached locally in each UTM firewall to maximize performance for subsequent requests. Tight Integration with other D-Link Security Gateway Subsystems D-Link allows you to define highly-granular policies for allowing or disallowing where and when access to certain types of websites is permitted, and different policies can be applied to any combination of users, interfaces, and IP networks.

Static White and Black Lists Define websites that will be explicitly allowed or blocked, independent of their classification. There are 32 default classification groups in NetDefend UTM firewalls to allow network administrators to control Internet usage. Active Content Handling The WCF capabilities of D-Link UTM firewalls can strip potential malicious objects, such as Java applets, JavaScripts / VBScripts, ActiveX objects and cookies, all of which are popular methods for hacker attacks. Cost-Effective Web Content Filtering D-Link s WCF service is priced per firewall instead of per user, so an enterprise-level organization does not need to contemplate a large TCO for licensing in order to manage the surfing privileges of all employees. One subscription can provide web surfing control for an entire organization. Multiple replicated databases are deployed worldwide to maximize performance and availability. 1. user requests a web page. 2. A global database is queried for the category of the web page. 2b. if the database does not contain the requested information, the web page is downloaded by the database and analyzed using several techniques. Public web server 3. if granted by the corporate surfing policy, the user will gain access to the requested website. Surfing policy for engineering department Adult: Block / Shopping: Block / News: Allow

Extending Your Subscription Service D-Link UTM firewalls are shipped with a 12 month Intrusion Prevention System (IPS) subscription, a 12 month AntiVirus (AV) subscription, and a 90 day Web Content Filtering (WCF) subscription - free of charge. Upon expiration of these free subscription services, you can extend your subscriptions by purchasing NetDefend UTM subscriptions for specific services. Contact your D-Link reseller for details. Subscription Service Ordering Information: DFL-260-IPS-12 12-month IPS update service for DFL-260 firewall DFL-260-AV-12 12-month Anti-Virus update service for DFL-260 firewall DFL-260-WCF-12 12-month Web Content Filtering service for DFL-260 firewall DFL-860-IPS-12 12-month IPS update service for DFL-860 firewall DFL-860-AV-12 12-month Anti-Virus update service for DFL-860 firewall DFL-860-WCF-12 12-month Web Content Filtering service for DFL-860 firewall DFL-1660-IPS-12 12-month IPS update service for DFL-1660 firewall DFL-1660-AV-12 12-month Anti-Virus update service for DFL-1660 firewall DFL-1660-WCF-12 12-month Web Content Filtering service for DFL-1660 firewall DFL-2560-IPS-12 12-month IPS update service for DFL-2560/2560G firewall DFL-2560-AV-12 12-month Anti-Virus update service for DFL-2560/2560G firewall DFL-2560-WCF-12 12-month Web Content Filtering service for DFL-2560/2560G firewall D-Link Corporation No. 289 Xinhu 3rd Road, Neihu, Taipei 114, Taiwan Specifications are subject to change without notice. D-Link is a registered trademark of D-Link Corporation and its overseas subsidiaries. All other trademarks belong to their respective owners. 2009 D-Link Corporation. All rights reserved. Release 02 (September 2009)

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback