McAfee Next Generation Firewall



Similar documents
Forcepoint Stonesoft Next Generation Firewall

Forcepoint Stonesoft Next Generation Firewall

McAfee Next Generation Firewall (NGFW) Administration Course

Stonesoft 5.5. Firewall/VPN Reference Guide. Firewall Virtual Private Networks

McAfee Next Generation Firewall Optimize your defense, resilience, and efficiency.

McAfee NGFW Reference Guide for Firewall/VPN Role 5.7. NGFW Engine in the Firewall/VPN Role

F IREWALL/VPN REFERENCE GUIDE

Stonesoft 5.4. Firewall Reference Guide. Firewall Virtual Private Networks

A host-based firewall can be used in addition to a network-based firewall to provide multiple layers of protection.

Move over, TMG! Replacing TMG with Sophos UTM

NETASQ MIGRATING FROM V8 TO V9

F IREWALL/VPN REFERENCE GUIDE

StoneGate Reference Guide

Government of Canada Managed Security Service (GCMSS) Annex A-1: Statement of Work - Firewall

ANNEXURE TO TENDER NO. MRPU/IGCAR/COMP/5239

McAfee NGFW Reference Guide for IPS and Layer 2 Firewall Roles 5.7. NGFW Engine in the IPS and Layer 2 Firewall Roles

McAfee Network Security Platform Administration Course

McAfee Security. Management Client

McAfee Web Gateway Administration Intel Security Education Services Administration Course Training

Forcepoint Stonesoft Management Center

Simple security is better security Or: How complexity became the biggest security threat

McAfee Network Security Platform A uniquely intelligent approach to network security

McAfee Firewall Enterprise System Administration Intel Security Education Services Administration Course

Content-ID. Content-ID URLS THREATS DATA

APV9650. Application Delivery Controller

Professional Integrated SSL-VPN Appliance for Small and Medium-sized businesses

USG6300 Next-Generation Firewall

USG6600 Next-Generation Firewall

Table of Contents. 1 Overview 1-1 Introduction 1-1 Product Design 1-1 Appearance 1-2

McAfee Network Security Platform A uniquely intelligent approach to network security

Web Request Routing. Technical Brief. What s the best option for your web security deployment?

Cyberoam Next-Generation Security. 11 de Setembro de 2015

How To Use A Cisco Wvvvdns4400N Wireless-N Gigabit Security Router For Small Businesses

Unified Services Routers

Results of Testing: Juniper Branch SRX Firewalls

Content-ID. Content-ID enables customers to apply policies to inspect and control content traversing the network.

McAfee Next Generation Firewall

Cisco WRVS4400N Wireless-N Gigabit Security Router: Cisco Small Business Routers

Introducing IBM s Advanced Threat Protection Platform

VMware vcloud Networking and Security Overview

Gigabit SSL VPN Security Router

Huawei Eudemon200E-N Next-Generation Firewall

McAfee Security Architectures for the Public Sector

McAfee Network Security Platform A uniquely intelligent approach to network security

Application Note. Providing Secure Remote Access to Industrial Control Systems Using McAfee Firewall Enterprise (Sidewinder )

Networking for Caribbean Development

Virtualized Network Services SDN solution for enterprises

Security Gateway 10er Serie

Game changing Technology für Ihre Kunden. Thomas Bürgis System Engineering Manager CEE

FortiGate Multi-Threat Security Systems I Administration, Content Inspection and SSL VPN Course #201

Secure remote access to your applications and data. Secure Application Access

WATCHGUARD FIREBOX VCLASS

Network Security Firewall

Course Overview: Learn the essential skills needed to set up, configure, support, and troubleshoot your TCP/IP-based network.

App-ID. PALO ALTO NETWORKS: App-ID Technology Brief

Chapter 4: Security of the architecture, and lower layer security (network security) 1

IINS Implementing Cisco Network Security 3.0 (IINS)

Cisco RV 120W Wireless-N VPN Firewall

Cisco ASA, PIX, and FWSM Firewall Handbook

Network protection and UTM Buyers Guide

(d-5273) CCIE Security v3.0 Written Exam Topics

UNIFIED THREAT MANAGEMENT SOLUTIONS AND NEXT-GENERATION FIREWALLS NETWORK SECURITY NETWORK SECURITY I ENDPOINT SECURITY I DATA SECURITY

SonicWALL Clean VPN. Protect applications with granular access control based on user identity and device identity/integrity

Technology Blueprint. Protect Your Servers. Guard the data and availability that enable business-critical communications

CNS-207 Implementing Citrix NetScaler 10.5 for App and Desktop Solutions

TABLE OF CONTENTS NETWORK SECURITY 2...1

INTRODUCTION TO FIREWALL SECURITY

The Hillstone and Trend Micro Joint Solution

How NETGEAR ProSecure UTM Helps Small Businesses Meet PCI Requirements

Solutions Guide. Secure Remote Access. Allied Telesis provides comprehensive solutions for secure remote access.

Security+ Guide to Network Security Fundamentals, Fourth Edition. Chapter 6 Network Security

Gigabit Multi-Homing VPN Security Router

Virtualized Network Services SDN solution for service providers

Proof of Concept Guide

Unified Services Routers

Astaro Gateway Software Applications

Introduction of Quidway SecPath 1000 Security Gateway

Administrator's Guide

Direct or Transparent Proxy?

"Charting the Course... Implementing Citrix NetScaler 11 for App and Desktop Solutions CNS-207 Course Summary

VMware vcloud Air Networking Guide

Unified Services Routers

How To Set Up A Cisco Safesa Firewall And Security System

APV x600 Series. Application Delivery Controller APV1600, APV2600, APV4600, APV5600, APV6600, APV8600, APV9600

UTM FIREWALL SPECS HARDWARE SPECIFICATIONS

Juniper Networks and IPv6. Tim LeMaster Ipv6.juniper.net

Chapter 1 Network Security

McAfee Endpoint Protection for SMB. You grow your business. We keep it secure.

Cisco ACE 4710 Application Control Engine

Chapter 9 Firewalls and Intrusion Prevention Systems

FortiOS Handbook IPsec VPN for FortiOS 5.0

HP VSR1000 Virtual Services Router Series

Cisco RV220W Network Security Firewall

Release Notes. NCP Secure Entry Mac Client. Major Release 2.01 Build 47 May New Features and Enhancements. Tip of the Day

ProSecure Unified Threat. UTM Series. Unified Gateway Security for Smart IT Networks Without Compromise

How To Choose A Network Firewall

Transcription:

McAfee Next Generation Firewall Key Benefits The best protection for your business and digital assets. Adapts easily to your security needs. Scales effortlessly as your business grows. Optimizes productivity of employees and customers. Lowers TCO for both your security and network infrastructure. Key Features Superior NGFW protection. Intelligence aware security controls. Advanced evasion prevention. Unified software core design. High availability options for security and network infrastructure. Powerful centralized management. Built-in SSL VPN and IPsec VPN. McAfee Next Generation Firewall protects enterprise networks with highperformance intelligence aware security supported by real-time updates from the Security Connected ecosystem. This enables McAfee, a part of Intel Security, to deliver the industry s best defense against advanced evasions, along with complete next-generation firewall (NGFW) protections when and where you need it at remote sites, branch offices, data centers, and the network edge. McAfee Next Generation Firewall starts with a solid foundation of protections, including granular application control, an intrusion prevention system (IPS), built-in virtual private network (VPN), and deep packet inspection, all in an efficient, extensible, and highly scalable unified design. Then we add powerful anti-evasion technologies that decode and normalize network traffic before inspection and across all protocol layers to expose and block the most advanced attack methods. NGFW FW/VPN Security Management Center IPS L2FW Physical Virtual Software Superior Flexibility to Keep Pace with Changing Security Needs A unified software core enables McAfee Next Generation Firewall to easily change security roles, from NGFW to IPS to layer 2 firewall, in dynamic business environments. The unified software core also serves to optimize the data plane, providing a significant performance advantage regardless of security role or number of active security features. For even more flexibility, McAfee Next Generation Firewall can be deployed in a wide variety of formats as a physical appliance, software solution, virtual appliance, or as virtual contexts on a physical appliance. Licensing and Operating Roles Unified Software Core Figure 1. McAfee Next Generation Firewall adapts to multiple roles and installations.

High Scalability and Availability to Secure Business-Critical Applications Today s businesses demand fully resilient network security solutions. McAfee Next Generation Firewall delivers high scalability and availability in three powerful ways: Native active clustering: Up to 16 nodes can be clustered together, providing superior performance and resiliency when running demanding security applications, such as deep packet inspection and VPNs. Transparent session failover: Provides industry-leading availability and serviceability of security systems. McAfee Next Generation Firewall even supports transparent failover for multiple software and hardware versions within the same cluster. McAfee Multi-Link: Extends high availability coverage to network and IPsec VPN connections. Provides the confidence of non-stop security along with high performance for every deployment. Unmatched Protection to Keep Your Business in Business It s no secret. Every day attackers get better at penetrating enterprise networks, applications, data centers, and endpoints. Once inside, they can steal intellectual property, customer information, and other sensitive data, causing irreparable damage to your business and global reputation. Unknown to many security administrators, determined attackers can use advanced evasion techniques (AETs) to bypass most of today s security devices. AETs deliver advanced persistent threats (APTs) through advanced techniques such as masking and obfuscation. Once inside your network, threats are reassembled. Here they can hide, execute, and propagate unchallenged. McAfee Next Generation Firewall uses a variety of techniques on network traffic to identify applications and users at a granular level. Security policies can then be applied based on strict business rules. Then McAfee Next Generation Firewall performs specialized deep packet inspection, including advanced techniques such as full stack normalization and horizontal data stream-based inspection. These techniques normalize traffic flows, enabling McAfee to expose AETs and traffic anomalies that other NGFWs miss. Only after traffic has been fully normalized can it be properly inspected across all protocols and layers for threats and malware. And only McAfee Next Generation Firewall has been successfully tested against more than 800 million AETs. Knowledge Is Power Point security solutions restrict knowledge sharing, weakening their ability to recognize and block threats. The Security Connected threat ecosystem enables rapid sharing of extensive real-time threat information, empowering organizations to defeat cybercrime with the latest global and local threat knowledge. Security Connected enables McAfee Next Generation Firewall to leverage threat information from a wide variety of third party sources, as well as other McAfee security solutions including: epolicy Orchestrator (McAfee epo ) software: Allows McAfee Next Generation Firewall to obtain contextual information from users and their host systems, providing valuable insights into endpoint security postures. This information can also be used to simplify workflows when troubleshooting or investigating threats or problems. McAfee Enterprise Security Manager: Ensures continuous monitoring and alerting of compliance status, providing real-time situational awareness while improving security posture and reducing event response times. McAfee Next Generation Firewall 2

McAfee Advanced Threat Defense: Delivers superior protection against zero-day threats through dynamic sandboxing of malware and static inspection of suspect code. McAfee Advanced Threat Defense integration also allows McAfee Next Generation Firewall to offload inspection of suspect files for rapid threat feedback without impacting network performance. McAfee Global Threat Information: Provides McAfee Next Generation Firewall with superior reputation intelligence to protect against globally active advanced threats and malware. Security Connected, along with the flexibility of McAfee Next Generation Firewall, enables dynamic enterprises to quickly and easily deploy multilayered security solutions when and where they are needed. Powerful Centralized Management for Lower TCO In order to contain costs and optimize resources, today s businesses need operational and workflow efficiency when managing their NGFWs. McAfee Security Management Center provides centralized management and visibility of any role or features used on McAfee Next Generation Firewall. From a central location, McAfee Security Management Center gains deep insight into applications, user traffic, and shared content. A simple graphical user interface enables easy configuration, management, and monitoring of the entire system, lowering operational expenses so you can keep your business running smoothly as threats and related security needs evolve. McAfee Next Generation Firewall Specifications Supported Platforms Appliances Software Appliance Virtual Appliance Multiple hardware appliances with firewall throughput of 5 Gbit/s to 120 Gbit/s. See the appliance comparison data sheets for more details. X86-based systems VMware ESX and KVM support Supported Roles Firewall/VPN (layer 3), IPS mode (layer 2), layer 2 firewall Virtual Contexts Virtualization to separate logical contexts (FW, IPS, or L2FW) with separate interfaces, addressing, routing, and policies Firewall/VPN-Specific Functionality General Stateful and stateless packet filtering, circuit-level firewall with TCP proxy protocol agent Firewall Protocol Agents FTP, H.323, HTTP, HTTPS, IMAP4, MGCP, MS RPC, NetBios Datagram, Oracle SQL Net, POP3, RSH, RTSP, SCCP, SIP, SMTP, SSH, SunRPC, TCP Proxy, TFTP User Authentication Internal user database, LDAP Microsoft Active Directory, RADIUS, TACACS+ High Availability Active-active/active-standby firewall clustering up to 16 nodes Stateful failover (including VPN connections) VRRP Server load balancing Link aggregation (802.3ad) Link failure detection ISP Multihoming McAfee Multi-Link: high availability and load balancing between multiple ISPs, including VPN connections, McAfee Multi-Link VPN link aggregation, QoS-based link selection IP Address Assignment FW clusters: static, IPv4, IPv6 FW single nodes: static, DHCP, PPPoA, PPPoE, IPv4, static IPv6 Services: DHCP Server and DHCP relay for IPv4 Address Translation IPv4, IPv6 Static NAT, source NAT with port address translation (PAT), destination NAT with PAT McAfee Next Generation Firewall 3

McAfee Next Generation Firewall Specifications continued Routing Static IPv4 and IPv6 routes, policy-based routing, static multicast routing Dynamic Routing IGMP proxy, RIPv2, RIPng, OSPFv2, OSPFv3, BGP, PIM-SM IPv6 Dual stack IPv4/IPv6, ICMPv6, DNSv6 SIP Allows RTP media streams dynamically, NAT traversal, deep inspection, interoperability with RFC3261-compliant SIP devices CIS Redirection HTTP, FTP, SMTP protocols redirection to content inspection server (CIS) IPsec VPN Protocols IKEv1, IKEv2, and IPsec with IPv4 and IPv6 Encryption AES-128, AES-256, AES-GCM-128, AES-GCM-256, Blowfish, DES, 3DES 1 Message Digest Algorithms AES-XCBC-MAC, MD5, SHA-1, SHA-2-256, SHA-2-512 Diffie-Hellman DH group 1, 2, 5, 14, 19, 20, 21 Authentication RSA, DSS, ECDSA signatures with X.509 certificates, pre-shared keys, hybrid, XAUTH, EAP Other IPCOMP deflate compression NAT-T Dead peer detection MOBIKE Site-to-Site VPN Policy-based VPN, route-based VPN (GRE, IP-IP, SIT) Hub and spoke, full mesh, partial mesh topologies McAfee Multi-Link fuzzy-logic-based dynamic link selection McAfee Multi-Link modes: load sharing, active/standby, link aggregation Client-to-Gateway VPN IPsec VPN client for Microsoft Windows Automatic configuration updates from gateway Automatic failover with McAfee Multi-Link Client security checks Secure domain logon SSL VPN Client-Based Access Supported platforms: Android 4.0, Mac 10.7 2 and Windows Vista SP2 3 (and newer versions) Portal-Based Access OWA and Intranet access via SSL VPN portal through a browser Antispam Scanned Protocols SMTP Engine Scoring-based spam detection Filtering Methods Customizable email envelope/header/content matching Local anti-spoofing and relay Honeypot filtering SPF/MX record matching DNS-based blacklists IPS Mode And Layer 2 Firewall-Specific Functionality General Stateless packet filtering for Ethernet protocols (Dix/IEEE) Stateful packet filtering for IP protocols Logical Interface matching for VLANs and physical interfaces VLAN re-tagging MAC address filtering High Availability Layer 2 firewall clustering (active-passive) IDS clustering (active-active/active-passive) IPS serial clustering (active-active) Fail-open interface support (IPS mode) Dynamic inspection overload handling (IPS mode) McAfee Next Generation Firewall 4

McAfee Next Generation Firewall Specifications continued General Functionality (All Roles) Encapsulation Ethernet, 802.1q VLAN, PPPoA 4, PPPoE 5 Access Control IPv4 and IPv6 tunneled IP IP-in-IP IPV6 encapsulation GRE Advanced Access Control Interface zones Time TLS information Domain names User information Applications Traffic Management and QoS Policy-based traffic shaping Guaranteed/maximum/bandwidth prioritization Differentiated services code point (DSCP) matching/marking Policy-based concurrent session limiting Policy-based TCP MSS rewrite Inspection Anti-Botnet Decryption-based detection Message length sequence analysis Advanced Anti-Malware Down-selection using file filtering, reputation, McAfee Advanced Threat Defense, and McAfee antivirus options File Reputation Policy-based file filtering File categories: archive, executable, media file, Microsoft Office document File types: Flash, GIF, JPEG, MPEG, OLE, PDF, PNG, Riff, RTF, ZIP Classification from McAfee Global Threat Intelligence cloud service Advanced Threat Defense File redirection to McAfee Advanced Threat Defense Antivirus McAfee antivirus: file-based, local signature database, automatic real-time updates Scanned protocols: FTP, HTTP, HTTPS, POP3, IMAP, SMTP Dynamic Context Detection Protocol, application, file type (Flash, GIF, JPEG, MPEG, OLE, PDF, PNG, RIFF, RTF, text file, binary file) Protocol Normalization Full protocol normalization for Ethernet, IPv4, IPv6, ICMP, UDP, TCP, DNS, FTP, HTTP, IMAP, IMAPS, SMTP, SSH, NBT, SMB, SMB2, MSRPC, POP3, POP3S, SIP, TFTP, HTTPS (SSL/TLS), GRE, IP-in-IP, IPv6 encapsulation Protocol-Specific Inspection DNS, FTP, HTTP, HTTPS, IMAP, IMAPS, SMTP, SSH, NBT, SMB, SMB2, MSRPC, POP3, POP3S, SIP, TFTP Protocol-Independent Any TCP/UDP protocol Fingerprinting Evasion and Anomaly Detection Multilayer traffic normalization Vulnerability-based fingerprints Fully upgradable software-based inspection engine Evasion and anomaly logging Custom Fingerprinting Protocol-independent fingerprint matching Regular expression-based fingerprint language Snort signature converter Custom application fingerprinting TLS Inspection HTTPS client and server stream decryption and inspection TLS certificate validity checks Certificate domain name-based exemption list Correlation Local correlation, log server correlation DoS/DDoS Protection SYN/UDP flood detection Concurrent connection limiting, interface-based log compression Protection against slow HTTP request methods Reconnaissance TCP/UDP/ICMP scan, stealth, and slow scan detection in IPv4 and IPv6 Blocking Methods Direct blocking, connection reset, blacklisting (local and distributed), HTML response, redirect Traffic Recording Automatic traffic recordings/excerpts from misuse situations Updates Automatic dynamic updates through McAfee Security Management Center Current coverage of approximately 4,000 protected vulnerabilities McAfee Next Generation Firewall 5

McAfee Next Generation Firewall Specifications continued URL Filtering Protocols Engine Database Management and Monitoring Centralized Management SNMP Monitoring Traffic Capturing High Security Management Communication Security Certifications HTTP, HTTPS Webroot category-based URL filtering, blacklist/whitelist More than 280 million top-level domains and sub-pages (billions of URLs) Support for more than 43 languages, 82 categories Enterprise-level centralized management, logging and reporting system. See the McAfee Security Management Center data sheet for more details. SNMPv1, SNMPv2c, and SNMPv3 Console tcpdump, remote capture through SMC 256-bit security strength in engine management communication Common Criteria EAL4+, FIPS 140-2 crypto certificate, CSPN by ANSSI (First Level Security Certification) 1 Supported encryption algorithms depend on license used. 2 Available soon. 3 Ibid. 4 Firewall/VPN role only. 5 Ibid. McAfee. Part of Intel Security. 2821 Mission College Boulevard Santa Clara, CA 95054 888 847 8766 www.intelsecurity.com Intel and the Intel logo are registered trademarks of the Intel Corporation in the US and/or other countries. McAfee and the McAfee logo are registered trademarks or trademarks of McAfee, Inc. or its subsidiaries in the US and other countries. Other marks and brands may be claimed as the property of others. The product plans, specifications and descriptions herein are provided for information only and subject to change without notice, and are provided without warranty of any kind, express or implied. Copyright 2014 McAfee, Inc. 61327ds_ngfw_1114_fnl_ETMG

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information