1 / 37

Protection from Next Gen Threats

Protection from Next Gen Threats. Pralobh Menon Dell India Pvt Ltd. Pralobh Menon Sales Engineer DELL SonicWALL (South) . DELL SonicWALL solutions 1. Next Generation firewalls 2. Secure Remote Access (SSL-VPN) 3. Reporting & Management. Dell SonicWALL Product Portfolio. Network security.

levia
Download Presentation

Protection from Next Gen Threats

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Protection from Next Gen Threats Pralobh Menon Dell India Pvt Ltd Pralobh Menon Sales Engineer DELL SonicWALL (South)

  2. DELL SonicWALL solutions1. Next Generation firewalls2. Secure Remote Access (SSL-VPN)3. Reporting & Management

  3. Dell SonicWALL Product Portfolio Network security MobileConnect Clean wireless – SonicPoint-N Series WAN acceleration Secure remote access MobileConnect Email security Hosted Policy & management

  4. Dell SonicWALLFirewalls

  5. Dell SonicWALL NGFW lineup Enterprise, data center Dell SonicWALL SuperMassive Series Dell SonicWALL NSA Series Dell SonicWALL TZ Series SMB/campus/branch SuperMassive E10800 SuperMassive E10400 SuperMassive E10200 SuperMassive 9600 SuperMassive 9400 SuperMassive 9200 NSA 6600 NSA 5600NSA 4600 NSA 3600 NSA 2600 NSA 250M/220 TZ 215 TZ 205 TZ 105

  6. Looking at the box - Front

  7. Looking at the box - Back

  8. Network Traffic Visualization Real-time Traffic Breakdown App Traffic Drilldown User Traffic Consumption Bandwidth Breakdown Identify P2P Traffic

  9. Dell SonicWALL next-generation firewall Categorize Control Identify By Application By Application Category By Destination By Content By User/Group Prioritize Apps by Policy Manage Apps by Policy Block Apps by Policy Detect and Block Malware Detect & Prevent Intrusion Attempts By Application - Not by Port & Protocol By User/Group -Not by IP By Content Inspection -Not by Filename Policy Users/Groups Critical Apps Acceptable Apps Application Chaos Reassembly-Free Deep Packet Inspection Unacceptable Apps Ingress Malware Blocked Cloud-Based Extra-Firewall Intelligence Egress

  10. Application Intelligence

  11. Advanced App Control Application Library with over 4235 unique Application Uses Granular Control • Allow Facebook, Block BitTorrent • Allow Chat, Block File Transfer • Group/User Based • Schedule Based • Exceptions

  12. Geo-IP Filter Block traffic from Hostile Countries Confidential

  13. SonicWALL On-Board DPI Security Services Intrusion Prevention Gateway Anti-Virus Gateway Anti-Spyware Cloud-AV Content/URL Filtering DPI SSL (SSL Inspection) Application Intelligence & Control Application Visualization Comprehensive Anti-Spam

  14. NGFW Wire & L2 Bridge Mode Deployment Layer 2 Bridge or Wire Mode Deployment After Before Discover application usage & threats leaking through the traditional firewall NGFW insertion into a network with an existing gateway firewall

  15. Next Generation Firewall (NGFW) Breaks the malware cycle Compromised “Good” Site Page Visit URL Filtering Exploit Intrusion Prevention Malware Hosting Site Malware Request SSL Decryption Network Anti-Virus Cloud Anti-Virus Botnet Filtering Malware

  16. Introducing the SuperMassive 9000 Series Industry leading performance and PSC in an elegant, 1RU design Capable of scaling to meet the high DPI performance and low latency demands of the world’s largest data centers and carriers. The NGFW is designed to deliver deep security to your enterprise at multi-gigabit speeds Industry leading power, space, and cooling all in an elegant 1 rack unit design. The NGFW specifically engineered for 10Gb+ enterprise networks.

  17. Performance SuperMassive 9600 • 9.7 Gbps IPS & Application Control • 20 Gbps Firewall Throughput • 5 Gbps Threat Prevention • 32x1.2 Ghz, 32 GB Ram SuperMassive 9400 • 8 Gbps IPS & Application Control • 20 Gbps Firewall Throughput • 4.5 Gbps Threat Prevention • 32x1.2 Ghz, 16 GB Ram SuperMassive 9200 • 5.0 Gbps IPS & Application Control • 10 Gbps Firewall Throughput • 3.5 Gbps Threat Prevention • 24x1.0 Ghz, 8 GB Ram

  18. Performance • 4.5 Gbps IPS & Application Control • 12 Gbps Firewall Throughput • 3 Gbps DPI Throughput • 24 x 1Ghz, 4 GB RAM • 3Gbps IPS & Application Control • 9Gbps Firewall Throughput • 1.6 Gbps DPI Throughput • 10 x 1.3Ghz, 4 GB RAM • 2Gbps IPS & Application Control • 6Gbps Firewall Throughput • 800 Mbps DPI Throughput • 8 x 1.1Ghz, 2 GB RAM • 1.1 Gbps IPS & Application Control • 3.4 Gbps Firewall Throughput • 500 Mbps DPI Throughput • 6 x 800Mhz, 2 GB RAM

  19. Multicore E10200 24 Cores E10400 E10800 96 Cores 48 Cores

  20. Top Deployments • Traditional NAT Gateway with Security & Remote Access • High Availability Modes • Active/Passive with State Synchronization • Active/Active DPI with State Synchronization • Active/Active Clustering • In-Line Deployments: Wire mode or Layer 2 Bridge Mode, Tap Mode • Easy Network Insertion, no network re-numbering • “Clean Wireless” Deployment • Firewall as a wireless controller • DPI on all wireless traffic • “CleanVPN” Deployment • Firewall as a VPN Concentrator • DPI on all incoming VPN traffic • VPN Concentrator for Distributed Enterprise • Global Management System (GMS) to provision and manage branch offices • Connectivity through central SuperMassive or E-Class NSA firewall • All security done at the central site • Network Segmentation (Security Zones) • Network Segmentation via VLAN & Security Zones • Different Security policies for each Security Zone

  21. Flexible Wire Mode Deployment • Allows for the quick and relatively non interruptive introduction of SuperMassive into a network (ie: between a core switch and a perimeter firewall, in front of a VM server farm, at a transition point between data classification domains). • Inspect Mode provides full visibility & low-risk, zero-latency packet path. • Secure Mode is the progression of Inspect Mode, actively interposing active control into the packet processing path. Bypass  Inspect  Secure

  22. Secure Remote Access

  23. Dell SonicWALL Secure Remote Access Detect – granular end-point control detects identity and security state Protect – unified policy limits user access to authorized applications only Connect – smart access and tunneling ensure easy, secure access to all network resources E-Class Secure Remote Access Series SRA EX9000 SRA EX7000 SRA EX6000 Virtual Appliance Mobile Connect Connect Mobile Spike License End PointControl Secure Virtual Assist Advanced Reporting Native Access Modules SRA 4200 SRA 1200 Virtual Appliance Secure Remote Access Series Mobile Connect Secure Virtual Access Secure Virtual Assist Secure Virtual Meeting Web App Firewall Spike License End PointControl Secure remote access for all users, devices and applications

  24. Perimeter is starting to Fade. Mobility trends are putting endpoints Increasingly Out of IT Control Business Partners/ Extranet Users PDA & Smart Phone Users Internal Users Day Extenders Home OfficeUsers Traveling Executives Saas, Web 2.0 Real-Time Apps Kiosks/Public Machine Users VOIP Users Wireless LAN Users

  25. The Dell SonicWALLAventail approach to Secure Remote Access Detect Protect Connect Connect Protect applications with granular access control based on user identity and device integrity Connectusers securely and easily to applications on any device Detectwhat is running on the end point device Remote Access Corporate Perimeter Dell SonicWALL SSL VPN Solution Day Extender Directories Applications Traveling Employee Employee Using a Wireless Hotspot Web Apps Client/Server Apps File Shares Databases VoIP VDI Infrastructure LDAP LDAP Employee at a Kiosk Employee Smart Phones/ Tablets AD RADIUS Extranet Access Internal Access Customer/Supplier Behind a Firewall Business Partner from any Browser Internal Users

  26. Connect: Smart access to unmanaged devices Welcome to the myCompany Remote Access Portal WorkPlace access: Access to web-based and client/server applications from virtually any device.

  27. Detect: EPC for iOS/Android Devices • EPC options for iOS • Determine jailbreak status • DeviceID (Based on the UDID of the iOS device) • Certificate enforcement • OS version control • EPC options for Android • Determine root status • DeviceID (Based on the IMEI of the Android device) • Certificate enforcement • OS version control • Enforcement of anti-virus

  28. Connect: Dell SonicWALL Mobile Connect • Unified client app supporting SSL VPN connectivity to the E-Class SRA, SRA and Next-Generation Firewall solutions • Determine if the device is Jailbroken or rooted (E-Class SRA Only) • Unified policy controls to limit access from Android or iOS enabled devices • Easily downloadable from Google play or App Store for iOS iOS Corporate Perimeter Dell SonicWALL SSL VPN Solution Directories Applications Web Apps Client/Server Apps File Shares Databases VoIP VDI Infrastructure LDAP LDAP Internet Android AD RADIUS

  29. Mobile Connect for iOS / Android Dell Aventail E-Class SRA Appliances Step 1: Download Mobile Connect Step 3: Configure SSL VPN Connection Dell SonicWALL SRA Appliances Dell SonicWALL Next-Generation Firewalls Step 2:Install Mobile Connect

  30. Management and Reporting

  31. Management and reporting Analyzer Reporting & Analytics for SonicWALL firewall, CDP, and SRA appliances GMS 7.0 Reporting & Analytics, Policy Management, Monitoring for SonicWALL firewall, CDP, SRA, email security appliances Scrutinizer Flow Analytics for SonicWALL firewalls, 3rd party routers, switches, firewalls

  32. GMS 7.0 & Analyzer – Application traffic analytics Trouble shooting, forensics, app usage reports for customers .

  33. 3rd Party Validation

  34. The NSS Security Value Map • Summary of 2013 NGFW testing results from www.nsslabs.com • Classification • Recommended • Caution • 2xNeutral • Final Product Rating near the name of the product • Lines signify corrections due to major failures • - No line = No Major Failure

  35. UTM Firewall 2012 Magic Quadrant (March 2012) SonicWALL was positioned in the Leaders Quadrant for 2012 • Fast-Forwarding Firewall Face-Off • (April 2012) • Best Overall Performance for NGFW • Best Overall Performance for UTM • Best Overall Performance for SSL Decryption

  36. Q&A

  37. Thank You

More Related