wg-utm-ngfw-101
TRANSCRIPT
UTM (Unified Threat Management) & NGFW (Next Genera8on Firewall) 101
Prepared by: Ricoh IT Services NSE: Serhat Cakmakoglu
UTM Combines Mul8ple Perimeter Services
Unified Threat Management in a single form factor
Application Control
URL Filtering
Anti SPAM
Gateway AntiVirus Intrusion
Prevention Service
Firewall
Data Loss Prevention
Advanced Persistent Threats
Why Customers Choose WatchGuard
#1 UTM Performance at all price points
Top UTM Performance
#1 Industry Leading Modules
Best-of-Breed Technology
#1 Most Highly Recognized
Strong Manageability
WatchGuard’s Industry-‐Leading PlaJorm Yields Key Benefits
WatchGuard Best of Breed
WatchGuard UTM – Architected for Speed
19
XTM: WatchGuard’s Security PlaJorm
Red boxes = WatchGuard IP
Latest, highest performance platform available
Common management console gives policy-driven control of technologies
Standardized across products
Unparalleled security foundation
Best of Breed Technologies from leading vendors
Designed for modularity; easy to add or replace technologies
The value is in the platform
WatchGuard XTM PlaJorm
WatchGuard Proxy-‐based Engine
WatchGuard
Industry Standard PlaJorms
AnMV
irus
URL Filtering
VPN
Repu
taMo
n En
abled
Defense
AnMS
PAM
Intrusion
Preven
Mon
App Co
ntrol
Hyper-V
Data Loss
Preven
Mon
APT Blocker
VMware
…
Policy-‐based Management Console
XTM Defense-In-Depth In Action
WatchGuard vs. Web 2.0 Security Issues • Snags malware, scareware, spyware and
malicious scripts GAV
• Prevents drive-by-download attacks IPS
• Cloud-based service protects you from legitimate sites infected with malware RED
• Enables granular control by user, group, or IP; block or limit bandwidth
Application Control
• Next gen sandbox in the cloud detects advanced malware that signatures miss APT Blocker
21
Fireware XTM: Making the Most of Your Network
QoS and Traffic Shaping • High-priority traffic gets bandwidth • Low-priority traffic gets available bandwidth
Multi-WAN Support • Redundancy or aggregate throughput • Traffic can use multiple WAN connections
simultaneously or on a failover
VPN Routing & Failover • Mission-critical VPN traffic keeps flowing if a remote
site becomes unavailable • Prioritize and route traffic to appropriate network
IPv6 Readiness • IPv6 Ready Gold Logo validates IPv6 routing • All XTM appliances will support IPv6
25
Turn Oceans of Data into Security Intelligence
WatchGuard Dimension – Launched Oct. 2013
31
Bring Big Data Visibility to Network Security
Real-‐Mme monitoring lets you take instant acMon
Many View OpMons: Drill-‐down in FireWatch TreeMap View to Hone in on Insights
Managing XTM Solutions: Satisfy Auditors
Over 90 pre-defined reports included. Drill-down for the data you need.
33
XTM Multi-Box Management Saves Time
Simultaneously manage from 2 to 100’s of boxes.
Implementing the WatchGuard solution was a breeze. The policy setting and system configuration is easy because it is all very logical and straightforward. Francis Lim, IT Manager, Eurokars Group
Align security policies across
an organization – or apply modifications between boxes
35
RapidDeploy
• Large MSSPs • Retail Chains
• Technical staff are not required at remote location
• When connected, device securely gets its configuration from the WatchGuard cloud
February 5, 2014 36
Simplify large multi-box deployments
Central Management Console
I can’t remember the last time I had to call someone with a security problem. With WatchGuard, we are always connected. Lucas Goh, Head of IT Operations for Asia, Berg Propulsion
Securely Connecting Users: VPN
• Create VPN by simple drag and drop • Dynamic RouMng can be applied to branch office
VPN connecMons • Select from IPSec, SSL, L2TP for Mobile Users • Choose your device: laptop, smartphone, tablet • Define flexible rules to restrict data access to
authorized individuals only
37
What is “Next-Generation”?
(XTM = Next-Generation UTM) “XTM platforms will take security appliances beyond traditional boundaries by vastly expanding security features, networking capabilities and management flexibility.”
“Firewalls need to evolve to be more proactive in blocking new threats, such as botnets and targeted attacks. Enterprises need to update their network firewall and intrusion prevention capabilities to protect business systems as attacks get more sophisticated.”
38
Industry-Leading Value
“The product’s reporting functions were a differentiator amongst other NGFW”
Source: Info-Tech Research Group. Vendor Landscape: Next Gen Firewall. August 2014. 39
Segment Leading Manageability & Usability
“Through 2018, more than 95% of firewall breaches will be caused by firewall misconfigura8ons, not firewall flaws”
-‐Gartner “One Brand of Firewall is a Best PracMce for Most Enterprise Firewalls”, 28 Nov 2012
40
Leader in Gartner UTM Magic Quadrant for 5th Year Running
41 | Confidential
Source: Gartner, March 2012 and June, 2013
“A balance between ease of use and strong security”
“Users and channel partners report high reliability on the appliances and strong support from WatchGuard”
“[H]ighest use rate of mul8ple features (beyond firewall, IPS and
URL blocking) of all vendors”
“Recent hardware and so[ware upgrades bring significant
performance improvements”
Leaders Challengers
Visionaries Niche Players Completeness of Vision
Abi
lity
to E
xecu
te
Source: Gartner Magic Quadrant for Unified Threat Management, July, 2013
Strong Suite of Security Products…
WatchGuard Security Solutions combine firewall, VPN, and security services to protect networks from data loss, spam, viruses, malware, and intrusions.
XTM 2520: Large enterprises and corporate data centers*
XTMv Four virtual software license versions with full UTM features
XTM 2 & 3 Series: Small offices, branch offices and wireless hotspots
XTM 5 & 800 Series: Mid-sized businesses and distributed enterprises
Software Scalability: Single version of WatchGuard Fireware® OS runs on all solutions, including virtual
XTM 1500 Series: Large distributed enterprises
Wireless Access Points AP100/200 & AP102 Businesses can harness the power of mobile devices without putting network assets at risk.
… with leading performance that meets the needs of businesses of all sizes Core Business Product Line
*XTM 2520: World’s fastest, greenest 1 rack unit UTM Firewall
Firebox® T10: Small office/home office and small retail environments Indoor Outdoor
Large Customer Base of Enterprise Businesses
Educa8on Hospitality Retail
Diversified
Food & Beverage
Other Tech, Media & Telecom
A large number of distributed enterprise customers are recognizing WatchGuard’s scalable architecture and best-in-class manageability
TV Globo
Why DO We Need WatchGuard • Manage users to access internet. • Intrusion Prevention and Advanced Application Control • Filtering content and URL of the website. • Filtering by keyword • Filtering and Deep Pocket Inspection of HTTPS. • Web blocker has over 130 categories for IT manager to manage the internet access. • Reports and logs all content accessed by users via Dimension. • Secure e-‐mail and web access. • Can be integrated to the Domain AD controller to apply the policy to manage users. • Advanced Persistent & Zero Day Malware Threat Detection. • Data Loss Prevention and many more features….
WatchGuard is NOT ONLY a Secure Firewall but also it is a good tool for IT Managers to Manage their Network.
Thank You!
56