|
|
|
SteelGate™ is based on application-level proxies which offer superior security and filtering over traditional packet-filters and low level traffic controls. These proxies provide added protection by inspecting all inbound and outbound traffic at the protocol level ensuring that applications and end-users are protected. Applications within an organization can only be accessed through valid requests, removing the risk associated with exposing an organization's valuable assets to the Internet. SteelGate provides a comprehensive array of secure application and service proxies that enable access to vital Internet services. This is done without compromising security by providing direct access to core application servers or data sources with greater control and without limitations.
|
 |
 |
- "Application-layer" - superior security & filtering versus traditional packet filters & low level traffic controls
- Added protection inspecting ALL inbound & outbound traffic at protocol level
- Remove risk of exposing valuable assets to the Internet ie: applications only accessed through valid request
- Greater control without limitations with direct access to core application servers or data sources, some examples:
Secure application and service proxies include (but are not limited to):
|
Embedded Application-Specific Servers
|
A unique feature of SteelGate is its embedded servers. By removing the requirement to set up separate systems, it makes it easier for an administrator to manage the associated challenge of configuring individual services. These servers are hardened against attack and provide additional security features for additional value to both small and large organizations.
Web Proxy Server - For most networks a large percentage of Internet connection bandwidth is used for web access. As networks grow, much of this bandwidth is dominated on "repeat" traffic, where the pages being downloaded have already been previously downloaded by other hosts on the network. The caching in SteelGate reduces bandwidth usage by saving pages and serving them repeatedly rather than re-loading the pages from the source.
DNS - One of the most important security features of SteelGate is its ability to prevent any information about an internal network being revealed to an outsider. Using the dual name space (public/private) in SteelGate protects the internal hosts infrastructure while having control over records which are published to the Internet. With dual domain DNS servers this helps divide internal and public name space so organizations keep an internal network infrastructure private.
Email - SteelGate includes a built-in SMTP server that provides email security, routing and content control that is compatible with all mail systems. The mail server shields inbound mail servers from direct external connections and blocks common SMTP attacks. This is in contrast to many other firewalls that simply use a proxy or a set of packet filtering rules to pass an SMTP connection from an untrusted external network to a protected mail server.
FTP - The SteelGate FTP server provides a secure way to distribute files to partners, customers and suppliers.
NTP - The built-in NTP server and client allows other systems to request the current time from SteelGate or if it acts as a client, SteelGate will request the time from another time server, and set its clock accordingly.
|
Web caching and Authentication
|
The Firewall Server supports web caching and web access authentication. Using web Caching on the firewall can reduce the amount of bandwidth used on an organization’s Internet connection. The Firewall Server’s web authentication uses both LDAP and RADIUS to provide complete integration with an organization’s existing authentication services, such as Active Directory.
|
|
|
Continue to next page »
|
|
|
|
