390 likes | 632 Views
Protection from Next Gen Threats. Pralobh Menon Dell India Pvt Ltd. Pralobh Menon Sales Engineer DELL SonicWALL (South) . DELL SonicWALL solutions 1. Next Generation firewalls 2. Secure Remote Access (SSL-VPN) 3. Reporting & Management. Dell SonicWALL Product Portfolio. Network security.
E N D
Protection from Next Gen Threats Pralobh Menon Dell India Pvt Ltd Pralobh Menon Sales Engineer DELL SonicWALL (South)
DELL SonicWALL solutions1. Next Generation firewalls2. Secure Remote Access (SSL-VPN)3. Reporting & Management
Dell SonicWALL Product Portfolio Network security MobileConnect Clean wireless – SonicPoint-N Series WAN acceleration Secure remote access MobileConnect Email security Hosted Policy & management
Dell SonicWALL NGFW lineup Enterprise, data center Dell SonicWALL SuperMassive Series Dell SonicWALL NSA Series Dell SonicWALL TZ Series SMB/campus/branch SuperMassive E10800 SuperMassive E10400 SuperMassive E10200 SuperMassive 9600 SuperMassive 9400 SuperMassive 9200 NSA 6600 NSA 5600NSA 4600 NSA 3600 NSA 2600 NSA 250M/220 TZ 215 TZ 205 TZ 105
Network Traffic Visualization Real-time Traffic Breakdown App Traffic Drilldown User Traffic Consumption Bandwidth Breakdown Identify P2P Traffic
Dell SonicWALL next-generation firewall Categorize Control Identify By Application By Application Category By Destination By Content By User/Group Prioritize Apps by Policy Manage Apps by Policy Block Apps by Policy Detect and Block Malware Detect & Prevent Intrusion Attempts By Application - Not by Port & Protocol By User/Group -Not by IP By Content Inspection -Not by Filename Policy Users/Groups Critical Apps Acceptable Apps Application Chaos Reassembly-Free Deep Packet Inspection Unacceptable Apps Ingress Malware Blocked Cloud-Based Extra-Firewall Intelligence Egress
Advanced App Control Application Library with over 4235 unique Application Uses Granular Control • Allow Facebook, Block BitTorrent • Allow Chat, Block File Transfer • Group/User Based • Schedule Based • Exceptions
Geo-IP Filter Block traffic from Hostile Countries Confidential
SonicWALL On-Board DPI Security Services Intrusion Prevention Gateway Anti-Virus Gateway Anti-Spyware Cloud-AV Content/URL Filtering DPI SSL (SSL Inspection) Application Intelligence & Control Application Visualization Comprehensive Anti-Spam
NGFW Wire & L2 Bridge Mode Deployment Layer 2 Bridge or Wire Mode Deployment After Before Discover application usage & threats leaking through the traditional firewall NGFW insertion into a network with an existing gateway firewall
Next Generation Firewall (NGFW) Breaks the malware cycle Compromised “Good” Site Page Visit URL Filtering Exploit Intrusion Prevention Malware Hosting Site Malware Request SSL Decryption Network Anti-Virus Cloud Anti-Virus Botnet Filtering Malware
Introducing the SuperMassive 9000 Series Industry leading performance and PSC in an elegant, 1RU design Capable of scaling to meet the high DPI performance and low latency demands of the world’s largest data centers and carriers. The NGFW is designed to deliver deep security to your enterprise at multi-gigabit speeds Industry leading power, space, and cooling all in an elegant 1 rack unit design. The NGFW specifically engineered for 10Gb+ enterprise networks.
Performance SuperMassive 9600 • 9.7 Gbps IPS & Application Control • 20 Gbps Firewall Throughput • 5 Gbps Threat Prevention • 32x1.2 Ghz, 32 GB Ram SuperMassive 9400 • 8 Gbps IPS & Application Control • 20 Gbps Firewall Throughput • 4.5 Gbps Threat Prevention • 32x1.2 Ghz, 16 GB Ram SuperMassive 9200 • 5.0 Gbps IPS & Application Control • 10 Gbps Firewall Throughput • 3.5 Gbps Threat Prevention • 24x1.0 Ghz, 8 GB Ram
Performance • 4.5 Gbps IPS & Application Control • 12 Gbps Firewall Throughput • 3 Gbps DPI Throughput • 24 x 1Ghz, 4 GB RAM • 3Gbps IPS & Application Control • 9Gbps Firewall Throughput • 1.6 Gbps DPI Throughput • 10 x 1.3Ghz, 4 GB RAM • 2Gbps IPS & Application Control • 6Gbps Firewall Throughput • 800 Mbps DPI Throughput • 8 x 1.1Ghz, 2 GB RAM • 1.1 Gbps IPS & Application Control • 3.4 Gbps Firewall Throughput • 500 Mbps DPI Throughput • 6 x 800Mhz, 2 GB RAM
Multicore E10200 24 Cores E10400 E10800 96 Cores 48 Cores
Top Deployments • Traditional NAT Gateway with Security & Remote Access • High Availability Modes • Active/Passive with State Synchronization • Active/Active DPI with State Synchronization • Active/Active Clustering • In-Line Deployments: Wire mode or Layer 2 Bridge Mode, Tap Mode • Easy Network Insertion, no network re-numbering • “Clean Wireless” Deployment • Firewall as a wireless controller • DPI on all wireless traffic • “CleanVPN” Deployment • Firewall as a VPN Concentrator • DPI on all incoming VPN traffic • VPN Concentrator for Distributed Enterprise • Global Management System (GMS) to provision and manage branch offices • Connectivity through central SuperMassive or E-Class NSA firewall • All security done at the central site • Network Segmentation (Security Zones) • Network Segmentation via VLAN & Security Zones • Different Security policies for each Security Zone
Flexible Wire Mode Deployment • Allows for the quick and relatively non interruptive introduction of SuperMassive into a network (ie: between a core switch and a perimeter firewall, in front of a VM server farm, at a transition point between data classification domains). • Inspect Mode provides full visibility & low-risk, zero-latency packet path. • Secure Mode is the progression of Inspect Mode, actively interposing active control into the packet processing path. Bypass Inspect Secure
Dell SonicWALL Secure Remote Access Detect – granular end-point control detects identity and security state Protect – unified policy limits user access to authorized applications only Connect – smart access and tunneling ensure easy, secure access to all network resources E-Class Secure Remote Access Series SRA EX9000 SRA EX7000 SRA EX6000 Virtual Appliance Mobile Connect Connect Mobile Spike License End PointControl Secure Virtual Assist Advanced Reporting Native Access Modules SRA 4200 SRA 1200 Virtual Appliance Secure Remote Access Series Mobile Connect Secure Virtual Access Secure Virtual Assist Secure Virtual Meeting Web App Firewall Spike License End PointControl Secure remote access for all users, devices and applications
Perimeter is starting to Fade. Mobility trends are putting endpoints Increasingly Out of IT Control Business Partners/ Extranet Users PDA & Smart Phone Users Internal Users Day Extenders Home OfficeUsers Traveling Executives Saas, Web 2.0 Real-Time Apps Kiosks/Public Machine Users VOIP Users Wireless LAN Users
The Dell SonicWALLAventail approach to Secure Remote Access Detect Protect Connect Connect Protect applications with granular access control based on user identity and device integrity Connectusers securely and easily to applications on any device Detectwhat is running on the end point device Remote Access Corporate Perimeter Dell SonicWALL SSL VPN Solution Day Extender Directories Applications Traveling Employee Employee Using a Wireless Hotspot Web Apps Client/Server Apps File Shares Databases VoIP VDI Infrastructure LDAP LDAP Employee at a Kiosk Employee Smart Phones/ Tablets AD RADIUS Extranet Access Internal Access Customer/Supplier Behind a Firewall Business Partner from any Browser Internal Users
Connect: Smart access to unmanaged devices Welcome to the myCompany Remote Access Portal WorkPlace access: Access to web-based and client/server applications from virtually any device.
Detect: EPC for iOS/Android Devices • EPC options for iOS • Determine jailbreak status • DeviceID (Based on the UDID of the iOS device) • Certificate enforcement • OS version control • EPC options for Android • Determine root status • DeviceID (Based on the IMEI of the Android device) • Certificate enforcement • OS version control • Enforcement of anti-virus
Connect: Dell SonicWALL Mobile Connect • Unified client app supporting SSL VPN connectivity to the E-Class SRA, SRA and Next-Generation Firewall solutions • Determine if the device is Jailbroken or rooted (E-Class SRA Only) • Unified policy controls to limit access from Android or iOS enabled devices • Easily downloadable from Google play or App Store for iOS iOS Corporate Perimeter Dell SonicWALL SSL VPN Solution Directories Applications Web Apps Client/Server Apps File Shares Databases VoIP VDI Infrastructure LDAP LDAP Internet Android AD RADIUS
Mobile Connect for iOS / Android Dell Aventail E-Class SRA Appliances Step 1: Download Mobile Connect Step 3: Configure SSL VPN Connection Dell SonicWALL SRA Appliances Dell SonicWALL Next-Generation Firewalls Step 2:Install Mobile Connect
Management and reporting Analyzer Reporting & Analytics for SonicWALL firewall, CDP, and SRA appliances GMS 7.0 Reporting & Analytics, Policy Management, Monitoring for SonicWALL firewall, CDP, SRA, email security appliances Scrutinizer Flow Analytics for SonicWALL firewalls, 3rd party routers, switches, firewalls
GMS 7.0 & Analyzer – Application traffic analytics Trouble shooting, forensics, app usage reports for customers .
The NSS Security Value Map • Summary of 2013 NGFW testing results from www.nsslabs.com • Classification • Recommended • Caution • 2xNeutral • Final Product Rating near the name of the product • Lines signify corrections due to major failures • - No line = No Major Failure
UTM Firewall 2012 Magic Quadrant (March 2012) SonicWALL was positioned in the Leaders Quadrant for 2012 • Fast-Forwarding Firewall Face-Off • (April 2012) • Best Overall Performance for NGFW • Best Overall Performance for UTM • Best Overall Performance for SSL Decryption