• StoneGate Management Center
• StoneGate FW / VPN
• Overview
• Features
• IPS Integration
• Antivirus Protection
• Protecting HTTP
• Securing VoIP
• Clustering
• Quality of Service
• Securing Servers
• Internet Connectivity
• Office Connectivity
• Mobile Access
• Appliances
• Software Solutions
• Virtual Firewall
• StoneGate IPS
• StoneGate SSL VPN
• StoneBeat

• Vendor independent
• Scalable
• Granular configuration
• Transparent

Antivirus Protection

Antivirus protection for traffic through StoneGate Firewall

StoneGate firewall can be used in remote offices as the single security gateway solution as it inspects content for malware in transit. StoneGate Firewall scans HTTP, SMTP, POP3 and IMAP protocols also for viral content. Administrator has control on what traffic is scanned. For example Administrator may not want traffic to corporate intranet over VPN to be scanned for performance reasons. This can be fully controlled with flexible StoneGate firewall access rules.

Antivirus engine fetches fingerprint updates automatically. Together with firewall’s protocol inspection features for HTTP, SMTP, POP3, IMAP and SIP protocols this feature provides strong protection.

Benefits

• Improve security by scanning web and mail traffic content
• Improve performance by allowing Internet web and mail traffic directly from remote offices
  

Integrating External Antivirus Gateway to StoneGate Security Solution

Although an advanced firewall can do much more than filter packets based on sources and destinations, some threats are most efficiently tackled by complementing the firewall with external content inspection servers (CIS), and external anti-virus gateways.

With StoneGate this integration can be done easily. Just add one rule to the security rule base and activate an agent to redirect the network traffic for inspection. Agent redirection is truly transparent, thus requiring no additional configuration on the client machines.

For instance, incoming SMTP e-mail traffic could be forwarded from the firewall to the CIS for virus and content checking.

According to the firewall security rules, CIS removes suspicious content and the scrubbed packets are returned back to the firewall for routing to their final destination.

Viruses and hazardous content are discarded before packets enter the internal network.

CIS can also be used to control outbound Web traffic. Firewall can redirect traffic to a CIS, which examines the destination address (URL). If the site is on the list of inappropriate sites, the traffic is denied. Approved traffic continues as normal.

Benefits

• Possibility of using best-of-breed content inspection products
• Get best performance by separating tasks to dedicated servers
• Save money by using existing content inspection solution