sophos xg firewall
play

Sophos XG Firewall IP Partners ICT Systems & Services - PowerPoint PPT Presentation

Mar 15, 2023 •28 likes •548 views

Sophos XG Firewall IP Partners ICT Systems & Services www.ippartners.gr XG Firewall Overview Todays top firewall problems What IT managers say about their existing firewall Firewall Satisfaction Survey (Spiceworks 2017) Top

  1. Sophos XG Firewall IP Partners ICT Systems & Services www.ippartners.gr

  2. XG Firewall Overview

  3. Today’s top firewall problems What IT managers say about their existing firewall … Firewall Satisfaction Survey (Spiceworks 2017) Top Concerns My Firewall … makes it difficult to find information does not isolate infected systems Visibility makes it difficult to configure Protection is missing features Complexity doesn't alert me to threats doesn't identify risky users or apps

  4. Sophos XG Firewall Unrivalled Security, Simplicity, and Insight Complete Protection Synchronized security Simpler to Manage Instant Insights  Firewall & Wireless  Security Heartbeat ™  Streamlined workflows  Control center  Web, Apps, APT  Identify & Isolate APTs  Unified policies  User & App Risk  Email and WAF  Dynamic app ID  Policy templates  On-box reporting 4

  5. XG Firewall Unrivalled Security, Simplicity, and Insight 1. Complete Protection More-in-one protection than any other firewall • Advanced Threat Protection from the latest botnets and APTs • Next-generation Network, IPS, wireless, web, and app control • Optional email anti-spam, DLP, encryption and full-featured WAF 2. Synchronized Security Automated threat protection and response • Industry-first synchronizing IT security products to share telemetry • Security Heartbeat™ can automatically respond and isolate compromised systems • Unknown App Identification enables the firewall to identify unknown traffic 3. Simpler to Manage XG Firewall makes managing advanced protection simple • Unified policy and rule management brings everything together in one place • Enterprise-grade web policy is powerful, flexible and easy • Business application templates simplify setup & guide best-practices 4. Instant Insights Unprecedented insights into user and network activity • Control center surfaces critical information using traffic-light style indicators • User and application risk indicators identify issues before they become problems • Extensive on-box reporting included at no-extra charge provides even deeper insights 5

  6. XG Firewall Ecosystem Migration Tools Sophos Firewall OS (SF-OS) XG Series Appliances Synchronized Security Enabling an easy migration from New Firewall Operating System Identical to SG Series except Integration with Sophos Endpoints UTM 9 to SF-OS and Software Platform (available on Azure) come preloaded with SF-OS for enhanced protection & response Sophos Firewall Manager (SFM) Sophos iView Reporting Sophos Central Firewall Manager (CFM) Full-featured on-premise Centralized Management Updated on-premise Centralized Reporting Centralized Firewall Management in the Cloud (for partners only initially – coming to Central soon!)

  7. XG Firewall’s Unique Innovations 7

  8. What makes XG Firewall Unique Innovative features you just can’t get anywhere else Synchronized Security • Links Endpoints and Firewall to share telemetry and status • Enables features like Security Heartbeat™ & Real-time App ID Unified Firewall Rules and Policies • All firewall rules on one screen with snap-in user-based policies • Policy templates simplify protecting business applications Enterprise-grade Secure Web Gateway • Powerful top-down inheritance based web policy model • Easy and intuitive to build sophisticated user and group based policies User and Application Risk Assessment • Automatically identifies high risk users and applications on the network • Identifies potential issues before they become real problems No-compromise Deployment and Central Management • The most flexible deployment options without compromise: XG Series, software, virtual, IaaS (Azure) • Comprehensive centralized management and reporting made simple 8

  9. Synchronized Security Admin UTM/Next-Gen Firewall Endpoint/Next-Gen Endpoint Security Heartbeat™ ! RED Heartbeat Firewall detects traffic from Endpoint 9

  10. Unified Firewall Rules and Policies Making management easier All firewall rules in one place User, Network, Business Applications Powerful filtering options By rule type, zone, status or ID At a glance indicators Type, source, destination, users, service, traffic status, heartbeat, QoS, and natural language description 10

  11. Policy Templates Custom tailored templates enable easy & proper protection for common business apps 11

  12. Enterprise-grade Secure Web Gateway Powerful tools for building sophisticated user and group based web policies Top-down inheritance policy model Makes building sophisticated policies easy and intuitive. The same kind of SWG usually found only in dedicated enterprise products. Pre-defined policy templates Out-of-the-box policies for included for workplace, CIPA compliance, and more Powerful customization Custom define users/groups, activities (URLs, categories, file types), allowed action, and time-of-day and day-of-week constraints 12

  13. User Risk Assessment Automatically identifying top risk users on the network Automatically identifying top risk users on the network – before they become a problem 13

  14. App Risk Assessment Automatically identifying top application risks and overall app risk Risk: Low A few high risk applications and users are operating on the network – continue to monitor the situation carefully Risk: High Take action and setup an application control policy before data loss, abuse, or illegal activity become a real problem 14

  15. Deployment flexibility without compromise Flexible deployment options optimized for today’s business XG Series Hardware Full range of hardware appliances with wireless AP and RED add-ons Multi-core processors, solid-state storage, generous RAM Industry-leading performance at all price points – Miercom tested Virtual/Software Vmware, Hyper-V, Citrix XEN, KVM Flexibility regarding resource assignment and high availability Compatible with all x86 hardware IaaS Available in Microsoft Azure Marketplace Up and running in minutes with preconfigured VM Pay-as-you-go or BYOL 15

  16. XG Firewall How XG does user policy better 16

  17. Layer-8 User Identity and Awareness made simple Covers all areas of the Firewall. Consolidated. Easy to Manage Routing IPS QoS Apps Web 17

  18. Powerful user/group policy enforcement made simple Simply snap-in your sophisticated user and group based polices to a single firewall rule Define your user/group web enforcement policy Snap-it-in to your desired firewall rule 18

  19. Sophos Transparent Authentication Suite (STAS) Making user identity transparent and reliable. Single-Sign-On (SSO) made easy XG Firewall Microsoft Active Directory Server STAS Authentication Collector & Agent Information No client required on devices for SSO! 19

  20. What’s New XG Firewall v16 & v16.5 20

  21. Support for 3rd party URL databases STAS GUI configuration Microsoft Azure Support Two-Factor Authentication Per-rule and Policy-based routing Enhanced Control Center Google Apps Control Log Viewer Enhancements New User/Group Web Policy Over … Enhanced Anti-Spam 120! Support for 3rd party URL databases New Navigation New AP 15C and RED 15w support Enhanced Security Heartbeat New Features Synchronized Security Creative Commons SafeSearch App Identification SPX Email Encryption reply portal Image Enforcement Streamlined Firewall Email Per-Domain Missing Security Rule Screen Routing and MTA Heartbeat Detection Firewall-to-firewall RED tunnels Firewall domain name HA support for dynamic WAN interfaces Clone firewall and other rules 21

  22. XG Firewall v16 Continuing to build on the story Simplified User Experience New Protection Features Added Synchronized Security Creating a more intuitive experience Over 120 new features improving Adding new Synchronized Security across all areas of the product from protection and flexibility across all areas features to the arsenal to improve navigation to policy to logging & more of the firewall protection, enforcement and visibility

  23. Simplified User Experience New in XG Firewall v16: Easier Navigation Enhanced Control Center Widgets Streamlined Policy Setup Improved Logging and Trouble- shooting Tools 23

  24. Complete Protection New in XG Firewall v16: New Enterprise-Grade Secure Web Gateway Two-factor Authentication Email Enhancements (Routing, Policy Tools, MTA) Microsoft Azure Support 24

  25. Synchronized Security New in XG Firewall v16 Missing Heartbeat Detection UTM/Next-Gen Firewall Endpoint/Next-Gen Endpoint Identifying & isolating compromised endpoints Destination Heartbeat Block access to compromised servers and endpoints Cloud Intelligence Unknown App Identification Insights and control over unknown app traffic 25

  26. Synchronized Security Admin UTM/Next-Gen Firewall Endpoint/Next-Gen Endpoint Unknown App Identification GREEN Heartbeat Firewall detects unknown traffic from Endpoint Firewall requests context from endpoint Application information is exchanged 26

  27. The adoption of cloud infrastructure and services is accelerating • IaaS spending to grow 38.4% in 2016 • Cloud is the fastest growing business at Microsoft (Azure, Office 365, CRM) • All driven by immense benefits in pay-for-what- you-use, convenience, flexibility, reliability and scalability

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Apache As A Malware-Scanning Proxy Jeremy Stashewsky, Sophos Plc. http://www.sophos.com/

Apache As A Malware-Scanning Proxy Jeremy Stashewsky, Sophos Plc. http://www.sophos.com/

Apache As A Malware-Scanning Proxy Jeremy Stashewsky, Sophos Plc. http://www.sophos.com/ jeremys@ca.sophos.com Overview The case: building an appliance product Apache HTTPD proxy architecture Malware scanning: challenges and

895 views • 68 slides
Cyber Security Xperience Group & Sophos https://player.vimeo.com/video

Cyber Security Xperience Group & Sophos https://player.vimeo.com/video

Cyber Security Xperience Group & Sophos https://player.vimeo.com/video /135044595?width=800&heigh t=450&iframe=true&portrait=0 Cybercrime Prevention Seminar Law Society - Belfast Dermot Hayden 12 th Oct 2018 Sophos Snapshot

469 views • 35 slides
Firewall and IDS/IPS What is a firewall? firewall = wall to protect against fire propagation

Firewall and IDS/IPS What is a firewall? firewall = wall to protect against fire propagation

Firewall and IDS/IPS What is a firewall? firewall = wall to protect against fire propagation controlled connection between networks at different security levels = boundary protection ( L1 > L2 ) network at network at security

1.07k views • 67 slides
Sophos and Diane Searchable Symmetric Encryption with (Very) Low Overhead Raphael Bost, Brice

Sophos and Diane Searchable Symmetric Encryption with (Very) Low Overhead Raphael Bost, Brice

Sophos and Diane Searchable Symmetric Encryption with (Very) Low Overhead Raphael Bost, Brice Minaud RHUL ISG seminar, November 24th 2016 Plan 1. Symmetric Searchable Encryption. 2. Leakage and Forward-Privacy. 3. Sophos and Diane schemes. 4.

479 views • 45 slides
Firewalls in FreeBSD and OpenBSD What is firewall? firewall is a method of protecting hosts

Firewalls in FreeBSD and OpenBSD What is firewall? firewall is a method of protecting hosts

Firewalls in FreeBSD and OpenBSD What is firewall? firewall is a method of protecting hosts and networks connected to other hosts and networks against attacks from the outside and from the inside. a firewall is a network security system

440 views • 30 slides
Lane ESD Technology Services Core Firewall Overview Districts Behind Firewall Blachly

Lane ESD Technology Services Core Firewall Overview Districts Behind Firewall Blachly

Lane ESD Technology Services Core Firewall Overview Districts Behind Firewall Blachly Creswell Crow-Applegate-Lorane Fern Ridge Junction City Lowell Mapleton Screened, but exempt from policies Marcola

539 views • 15 slides
Firewall vs. Scrambling 2 1 Review of Firewall argument Review of Hayden-Preskill 4 3

Firewall vs. Scrambling 2 1 Review of Firewall argument Review of Hayden-Preskill 4 3

Firewall vs. Scrambling 2 1 Review of Firewall argument Review of Hayden-Preskill 4 3 State-independent interior operators Interior operator from HP recovery 6 5 Resolution of the puzzle Effect of infalling observer 7 Discussions Beni

1.61k views • 106 slides
FIREMAN: A Toolkit for FIREwall Modeling and ANalysis Michael Lin All about firewalls A

FIREMAN: A Toolkit for FIREwall Modeling and ANalysis Michael Lin All about firewalls A

FIREMAN: A Toolkit for FIREwall Modeling and ANalysis Michael Lin All about firewalls A firewall is only as good as its configuration Big deal, it should be easy to configure a firewall, right? Basically... no. A Quantitative

507 views • 14 slides
Agenda Why we need a new approach to endpoint security Introducing Sophos Intercept X

Agenda Why we need a new approach to endpoint security Introducing Sophos Intercept X

Agenda Why we need a new approach to endpoint security Introducing Sophos Intercept X Demonstration / Feature Walk Through Deployment Options Q & A 2 Endpoint Security has reached a Tipping Point Attacks are from within the

937 views • 29 slides
Firewalls 1 Outline What are firewalls? Types of Firewalls Building a simple

Firewalls 1 Outline What are firewalls? Types of Firewalls Building a simple

Firewalls 1 Outline What are firewalls? Types of Firewalls Building a simple firewall using Netfilter Iptables firewall in Linux Stateful Firewall Application Firewall Evading Firewalls 2 Firewalls

811 views • 55 slides
Overview Firewall Security Perimeter Security Devices H/W vs. S/W Packet Filtering vs.

Overview Firewall Security Perimeter Security Devices H/W vs. S/W Packet Filtering vs.

Overview Firewall Security Perimeter Security Devices H/W vs. S/W Packet Filtering vs. Stateful Inspection Firewall Topologies Chapter 8 Firewall Rulebases Lecturer: Pei-yih Ting 1 2 Perimeter Security Devices Routers

291 views • 7 slides
Java Card Applet Firewall Java Card Applet Firewall Exploration and Exploitation Exploration and

Java Card Applet Firewall Java Card Applet Firewall Exploration and Exploitation Exploration and

Java Card Applet Firewall Java Card Applet Firewall Exploration and Exploitation Exploration and Exploitation Wojciech Mostowski and Erik Poll Digital Security Radboud University Nijmegen The Netherlands http://www.cs.ru.nl/~{woj,erikpoll}/

818 views • 42 slides
Firewall What is it? Do we need one? Oxford Hills School District March 5, 2018 What is a

Firewall What is it? Do we need one? Oxford Hills School District March 5, 2018 What is a

Firewall What is it? Do we need one? Oxford Hills School District March 5, 2018 What is a firewall? Term first used in 1851 Henry Ford used them to protect passengers from engine fires, smoke and heat. Computer networks: a part of a

500 views • 21 slides
Firewalls Summary Brief History of Firewalls What is a Firewall? Why Firewalls?

Firewalls Summary Brief History of Firewalls What is a Firewall? Why Firewalls?

Firewalls Summary Brief History of Firewalls What is a Firewall? Why Firewalls? Network Address Translation Types of Firewalls Linux/Windows Firewalls pfSense Blue Team Activity Brief History Firewall

348 views • 30 slides
Palo Alto Firewall What are next generation firewalls and how do they operate? Difference between

Palo Alto Firewall What are next generation firewalls and how do they operate? Difference between

Palo Alto Firewall What are next generation firewalls and how do they operate? Difference between NGFW and classic firewalls: Classic Firewall Next Generation Firewall Traffic filtering using Port, IP, and protocol Supported Supported VPN

1.23k views • 26 slides
Palo Alto Firewall What are next generation firewalls and how do they operate? Difference between

Palo Alto Firewall What are next generation firewalls and how do they operate? Difference between

Palo Alto Firewall What are next generation firewalls and how do they operate? Difference between NGFW and classic firewalls: Classic Firewall Next Generation Firewall Traffic filtering using Port, IP, and protocol Supported Supported VPN

533 views • 25 slides
Go to the JOIN-US page and click on the Orange button Choose your membership type and click NEXT

Go to the JOIN-US page and click on the Orange button Choose your membership type and click NEXT

Go to the JOIN-US page and click on the Orange button Choose your membership type and click NEXT Fill in your email and the anti-spam code then NEXT Enter your details. You must agree the privacy policy and state whether you wish other members

273 views • 4 slides
Analyzing the Effectiveness of Phishing at Network Level Sagar Mehta, Nitya Sundareswaran, Kevin

Analyzing the Effectiveness of Phishing at Network Level Sagar Mehta, Nitya Sundareswaran, Kevin

Analyzing the Effectiveness of Phishing at Network Level Sagar Mehta, Nitya Sundareswaran, Kevin D. Fairbanks, Nick Feamster Motivation Source - Phishing Activity Trends Report July, 2006 , Anti-Phishing workgroup Our work done from Jan

395 views • 24 slides
Trading Update January 2019 Disclaimer The information contained in these The Presentation is

Trading Update January 2019 Disclaimer The information contained in these The Presentation is

Trading Update January 2019 Disclaimer The information contained in these The Presentation is being supplied to you solely for your the Financial Services and Markets Act 2000 (Financial Promotion) The Company is under no obligation to update

471 views • 19 slides
McMillans Commercial Litigation Litigators from each of the fjrms Canadian offjces have

McMillans Commercial Litigation Litigators from each of the fjrms Canadian offjces have

McMillans Litigation Group proudly presents its Commercial Litigation Presentation Series McMillans Commercial Litigation Litigators from each of the fjrms Canadian offjces have collaborated Presentation Series to assemble a

187 views • 7 slides
Migration to Cloud. Optimization and Security George Kouimintzis Commercial Director NSS

Migration to Cloud. Optimization and Security George Kouimintzis Commercial Director NSS

TM Migration to Cloud. Optimization and Security George Kouimintzis Commercial Director NSS Company >Founded by Engineers >Values (Flexibility, Trust, Effectiveness) >Solutions Oriented >Value Add Distributor >Method

383 views • 20 slides
Technology Toolkit 4 Key Pillars Security Training Maximize Your Technology Impact Web Site

Technology Toolkit 4 Key Pillars Security Training Maximize Your Technology Impact Web Site

Technology Toolkit 4 Key Pillars Security Training Maximize Your Technology Impact Web Site Anti-Virus Administrators Desktops/Tablets Email Telephone (VOIP-Land Lines) Firewall Daily Staff Wireless Business Cards Web Policy

210 views • 8 slides
Were glad you decided to join us. IT Forum, October 30, 2019 Division of Information

Were glad you decided to join us. IT Forum, October 30, 2019 Division of Information

October is Cyber Security Month. Were glad you decided to join us. IT Forum, October 30, 2019 Division of Information Technology Team & Agenda Susan Bowen; Chief Information Officer and Associate Vice President for IT Carl Hurst;

633 views • 35 slides
Understanding CASL Presented to the Alberta Chambers of Commerce April 22, 2014 Craig T.

Understanding CASL Presented to the Alberta Chambers of Commerce April 22, 2014 Craig T.

Dentons Canada LLP Understanding CASL Presented to the Alberta Chambers of Commerce April 22, 2014 Craig T. McDougall and Thomas A. Sides Understanding CASL 1) Background and Key Dates 2) Commercial Electronic Messages 3) Exemptions and

325 views • 31 slides

More recommend