- Better protection against malicious traffic
- IPS functionalities at your firewall
- Dynamic updates
- Easy and quick configuration
Protecting HTTP
HTTP Deep Packet Inspection – Firewall That Can Clean Your Web Traffic
Often companies have to keep their Web traffic fairly open for business to run smoothly. This creates a risk that intruders find their way to the internal networks through these holes made for Web traffic.
StoneGate firewall has always been able to do basic protocol validation to prevent this route from being abused. However, so far only a full-blown Intrusion Detection/Prevention System has been able to do more detailed inspection of connections to ensure Web traffic truly is Web traffic and detect any misuse of this route.
StoneGate version 3.0 introduces the same capabilities now in the firewall that have been available in the IPS.
StoneGate uses fingerprinting for misuse detection. What makes StoneGate firewall so powerful in the HTTP deep packet inspection is that it does not have only a part of the IPS functionality, but that it has the full system fingerprint library in its use, and the same analysis and inspection capability that IPS has.
With StoneGate Firewall 4.3 protection options also include antivirus checking. This combination of IPS level detailed protocol analysis and fingerprinting together with full antivirus checking for transferred content provides strong level of security for HTTP traffic.
Benefits
- Remote offices may no longer need a separate IPS to protect the Web traffic – the firewall is enough
- Malicious activity can be cleaned up already at the firewall level before it has time to enter internal networks and cause damage
- Prevents malicious traffic spreading from the internal networks to external networks (partner, extranet, Internet) – damages you might otherwise be liable for.