1 / 52

What’s new in CyberoamOS Ver. 10.04.0 Build 304

What’s new in CyberoamOS Ver. 10.04.0 Build 304. Our Products. Unified Threat Management. New Features in CyberoamOS. Enhanced Application Filtering Improved Layer-8 Reports Layer-8 controls on “YouTube for Schools” Embrace BYOD with Cyberoam High Speed Future Ready – 4G

ponce
Download Presentation

What’s new in CyberoamOS Ver. 10.04.0 Build 304

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. What’s new in CyberoamOS Ver. 10.04.0 Build 304 Our Products Unified Threat Management

  2. New Features in CyberoamOS • Enhanced Application Filtering • Improved Layer-8 Reports • Layer-8 controls on “YouTube for Schools” • Embrace BYOD with Cyberoam • High Speed Future Ready – 4G • Outbound Spam Protection • More features… • URL Import List • Enhancement in Active Directory Synchronization • Optimized IPSec Failover Configuration • Support of Multicast over VPN • Support of SSL-VPN Client for Mac-OS • Enhanced Virtual Host • DHCP Server Optimization

  3. Enhanced Application Filtering

  4. Application Classification Applications are classified based on

  5. Application Classification Applications are classified based on

  6. Proactive Protection Model • Administrator can simply select filtering criteria • Technology, Risk Level or Characteristics • Set action – regardless of application name • Allow or Deny • Allow/Block all future applications included for respective criteria • No need of administrator intervention to add new applications to policy

  7. Proactive Protection Model Select P2P Applications Set Action Block all future P2P application without adding applications manually

  8. Improved Layer-8 Reports

  9. Live Animated Graphs • Graph plotting offloaded to machine browser • Reduced processing for Cyberoam appliance • Enhanced user experience and data presentation

  10. In-Line Graphs • Enhanced data interpretation through visual comparisons

  11. Custom Graphs • Create customized charts with multiple options

  12. New Layer-8 Reports

  13. Dual Dashboard – Traffic and Security Dashboard Traffic Dashboard

  14. Dual Dashboard – Traffic and Security Dashboard Traffic Dashboard N/A: Private IP Others: Rest of records

  15. Dual Dashboard – Traffic and Security Dashboard Security Dashboard

  16. Dual Dashboard – Traffic and Security Dashboard Security Dashboard N/A: Private IP Others: Rest of records

  17. Country Maps for Source/Destination Traffic • Graphical overview of Data transfer and Risk level

  18. Application Reports

  19. Risk Meter • On the go notification of current network risk level

  20. Layer-8 Controls on “YouTube for Schools”

  21. Layer-8 Controls on “YouTube for Schools” • YouTube for Schools – huge repository of educationally relevant and engaging content • YouTube for Education (YouTube EDU) is sub-section of YouTube School Network • YouTube for EDU is free • Typically teachers can not access YouTube educational videos due to institutional security policies • Cyberoam’s Layer-8 controls on “YouTube for Schools” • Allows access to selected educational content • Offers user level control over upload of videos to YouTube site • Blocks all inappropriate and peripheral content such as ads, comments and links • Offers user (teachers/student) and group (school/class) level control • Provides user based (teachers and student) access reports

  22. Layer-8 Controls on “YouTube for Schools” • How YouTube EDU works? • Example:http://youtube.com/?edufilter=ABCD1234567890abcdef http://youtube.com/watch?v=gM95HHI4gLk&edufilter=ABCD1234567890afbcdef

  23. Layer-8 Controls on “YouTube for Schools”

  24. Layer-8 Controls on “YouTube for Schools” YouTube Education Filter will override Safe Search for YouTube

  25. Embrace BYOD with Cyberoam

  26. Mobile VPN for iOS and Android devices • Cyberoam’s Layer 8 Identity based security extended to mobile devices • Securely connect your iPhone, iPad and Android devices to your corporate network through VPN Android iOS IPSec VPN (New) L2TP VPN PPTP VPN L2TP VPN (New)

  27. Cyberoam CISCO VPN for iOS

  28. Cyberoam VPN for Android

  29. High Speed Future Ready – 4G

  30. High Speed Future Ready – 4G • Easy deployment for high speed internet connection • Simple USB modem plug-in into Cyberoam UTM appliance • Auto detection of Modem plug-in and plug-out • Auto detection if same modem is re-plugged in • Maximize business connectivity • Automatic fail-over to 4G/LTE WWAN connection • Gateway failover over VPN • VPN over 4G/LTE 4G

  31. High Speed Future Ready – 4G • What’s new in CyberoamOS: • Option to select PPP or DHCP (4G is Supported with DHCP Only) • Auto Detection of Recommended Settings

  32. High Speed Future Ready – 4G • What’s new in CyberoamOS: • CLI Command for Troubleshooting: • cyberoam wwan query serialport <serialport> ATcommand <AT command> • cyberoam wwan query serialport 0 ATcommand ati

  33. Outbound Spam Protection

  34. Outbound Spam Protection • Scanning with Recurrent Pattern Detection (RPDTM) technology • Offers real-time classification for fast detection and blocking of outbound spam • Content-Agnostic Technology • Detection of locally generated Outbound Spam • Ability to detect local patterns with smaller amounts of email traffic and as they occur • Local RPDTM optimized to reduce false positives when analyzing low volume patterns • Pattern samples are sent to Detection Center for further analysis • Detection of Outbound Spam which is a part of global outbreak • Identification of spammer • Email address of spammer • Samples of blocked email are sent for analysis • Helps identify the spammer source to deal with the root cause

  35. Cyberoam architecture for service provider’s network

  36. More features…

  37. Multicast over IPSec • Multicast traffic can be forwarded over IPSec VPN Tunnel via Static Multicast Routes

  38. URL Import List • Freedom from manually adding URLs and keywords leading to unhealthy access • Flexibility to import list of URLs and Keywords from a customized file • Ensure healthy access environment and company governance with a single click

  39. URL Import List

  40. Enhanced Active Directory Synchronization • Reduced Administration activities • Cyberoam automatically syncs user details with central AD • Fetch user’s details from AD such as Email ID, User Name, etc. • Cyberoam syncs “Purged AD users” and automatically purges users from the users list • Historic data of purged AD users will remain with Cyberoam for future accounting, auditing and analysis

  41. Enhanced Active Directory Synchronization • Identity  Authentication  Authentication Server  Add

  42. Enhanced Active Directory Synchronization • Identity  Authentication  Users

  43. Optimized IPSec Failover Configuration • Current GUI implementation is bit advanced but at the same time it allows granular configuration: • A main mode connection can be failed over to a connection which uses aggressive mode, and vice-versa • A connection with Pre-shared key authentication can be failed over to a connection using Certificates, and vice versa • A connection with a Local LAN / Remote LAN subnet configuration can be failed over to a connection having different Local LAN / Remote LAN subnet configuration • This release gives simplified GUI to configure failover within IPSec tunnel configuration interface itself

  44. Optimized IPSec Failover Configuration

  45. Email Alerts for VPN Tunnel Up/Down • Central alert configuration for all VPN tunnels (Default: Disabled)

  46. Email Alerts for VPN Tunnel Up/Down • Feature is only for Host to Host / Site to Site tunnels • Triggers for Email Alerts: • Tunnel went down because of DPD • Tunnel went down because the IPSEC SA expired. • Tunnel came up after going down without user intervention. • Note: • Alert will be sent for each subnet pair • E-mail for Tunnel went down will have disconnect reason

  47. DHCP Enhancement: • Support of Multiple Scopes (IP Pools) • Logic to pick IP from any one scope or pool? • “giaddr” parameter of DHCP request OR • Source Interface • Support of DHCP Server over IPSec VPN Tunnel • console> cyberoam dhcp lease_over_ipsec enable/disable/show

  48. DHCP Enhancement: Centralized DHCP over VPN • Configuration at HO • Configure DHCP Pools • Enable DHCP over IPSec • Configuration at Branches • Configure DHCP Relay • Enable IPSec

  49. DHCP Enhancement: Central Corporate DHCP Server • Configuration on Cyberoam • Configure DHCP Pools • Configuration on Switch • Configure DHCP Relay

  50. Virtual Host Enhancements: • Comma separated (Port List) VH: • One to One Mapping • Combination of TCP or UDP ports in one Virtual Host is not possible • Maximum Limit is 16 Ports per Virtual Host Configuration • Creation of Virtual Host in Combination of Port Options • Port Range to Single Port • Port List to Single Port

More Related