GajShield Next Generation Firewall (NGFW) appliances provides complete visibility into various threats and performance inhibitors allowing organisation to make informed and proactive security measure. GajShield firewall appliances provide powerful & integrated protection, enhance user productivity, granular policy definition, zero day protection providing pro-active security to networks and delivers real-time protection against fast moving threats like spyware, phishing, masked applications like Malware, Adware, P2P, Instant Messaging. With its Context Sensitive Data Leak Prevention, Gajshield Next Generation Firewall appliances not only protect you from external threats, but also secure your data too. GajShield firewall appliances are complimented with Cloud Security which protect your devices even when they are out of your network in an insecure networks.
GajShield Next Generation Firewall Appliance range: GajShield Next Generation firewall appliances range from GS 15nu to GS 1060dc providing security to SOHO, SME and large enterprises. Gajshield Next Generation Firewall appliances are enterprise-class appliances delivering highest levels of performance and security. Each next-generation firewall is evaluated against and has passed ICSA Labs Modular Firewall Product Certification Criteria version 4.1x for general purpose network firewalls, corporate category. Not only does GajShield appliances detect applications independent of port use, it also understands context of data flow with many web-based cloud (SaaS) applications (CASB). This empowers an enterprise to inspect data and prevent data leaks. GajShield firewall appliances have industries most powerful Deep Inspection Engine which accurately classifies network application in real time. Each firewall appliance is capable of being configured in Active-Active or Active-Passive High Availability mode. Multiple firewalls can be easily managed using GajShield’s Centralised Management System.
GajShield’s layered network security platforms are designed to provide in depth protection against various attacks by tightly integrating key security functions and to securely connect remote offices and partners. Gajshield Next Generation Firewall appliances combines ICSA Certified Firewall appliances, Data Leak Prevention, Cloud Security, IPS, VPN, URL Filtering, Virus screening and Bandwidth Management in a single appliance to provide in depth protection at the network edge. A unified management platform makes it a breeze to deploy, administer and manage GajShield Next Generation Firewall appliances.
- ICSA Labs Certified Firewalls
- IPv4 and IPv6 support
- User based rules
- Dynamic Stateful Inspection
- DoS, DDoS, Syn attack prevention
- Flexible Addressing Mode
- Multiple Network Zone
- Built-in Firewall Logging
- Group Policies
- DHCP Server
- RIP v1, RIP v2 and OSPF Support, NTP, SNMP
- Context Sensitive Data Leak Prevention
- Cloud Security (Remote Filtering)
- Object Oriented Policy Security Management
- User/Group based Policy management
- Application Security
Stateful Inspection technology monitors every incoming and outgoing packet, providing utmost network protection. Policies can be set for entire group- not required for each user, service, port- allowing both efficiency and flexibility. Flexible addressing mode such as NAT, PAT, one-to-one nat, many-to-one nat allows GajShield to be seamlessly integrated into most network environments. Supports advanced routing and networking features like RIP, OSPF, VLAN etc. providing granular configuration option.
Context Sensitive Data Leak Prevention Firewall: GajShield’s context sensitive Data Leak Prevention system understand web application by creating context which helps an enterprise to setup policies based on the web application instead of IPs, Usernames which have no relevance to the above application.
Cloud Security: Web 2.0 applications, such as social and business networking, create both opportunities and challenges. They help create communities of interest for marketing, but also create risks when users inadvertently download malicious content, or create liability when employees publish inappropriate or confidential content on blogs and social networks. Road warriors and smartphone users further exacerbate this problem – their access to the Internet often bypasses all security controls. GajShield enriches user experience for Internet access, while providing risk mitigation and policy enforcement for CEOs and CISOs through its in-the-cloud service. Organizations do not need to purchase, deploy, or manage countless point products. Companies simply define their corporate security, control, and compliance policy by accessing the GajShield service.
Application Filtering: Gajshield Next Generation Firewall filtering based on port numbers can not longer provide security to an enterprise. Many applications use standard ports like 443 to camouflage its application traffic. The strength of a firewall in classifying these application forms the basis of your security.
BYOD – Bring Your Own Device management: GajShield’s BYOD feature allows to identify and create policies for BYOD devices. This feature enhances the UserSense engine to inspect, detect and monitor the traffic and control devices used by employees. It can identify whether the traffic has come from a mobile device or desktop device. Based on this information, enterprises can set up different BYOD policies limiting the access to internet or mobile applications. More than often employees are allowed to bring in devices which are not controlled by the enterprise. Many of these devices have varied OS, with malicious apps getting downloaded. These devices can compromise enterprise network with unaccounted traffic.
GajShield Object Oriented Policy Security: Child policies provide specialized behaviors from the basis of common elements provided by the parent class. Through the use of inheritance, security managers can reuse parent policies many times. Object oriented policy management improves the security implementation in an enterprise by reducing the number of policies and creating common abstract policies which are inherited by other policies. Object Oriented Policy helps enterprise to create complex policies in a very easy and quick way. Time, user or group based exception can be easily created without having to disturb the default policies. It gives power to the security team to implement practical security policies without creating large number of rulesets.
GajShield Virtual Private Network (VPN): Gajshield Next Generation Firewall provides Industry Standard IPSec, L2TP and PPTP VPN along with High Availability for IPSec. GajShield incorporates Strong Authentication with RSA SecureID, VASCO tokens, Radius, LDAP and Active Directory to avoid any kind of interception in the network and the communication. Besides this, a lot of emphasize is given on the Encryption of the data and Authentication of the users aiming to access or transfer the data. GajShield uses DES, 3DES, AES encryption and Hash Algorithms like MD5, SHA1 and SHA2 for encryption purposes and Pre-shared key and Digital Certificates for secured Authentication. Gajshield also supports Internet Key Exchange that is, IKEv1 or IKEv2, (depending on the version) which is the protocol used to setup a security association (SA) in IPSec protocol suite
GajShield SecureLabs: GajShield Distributed Network Behavioral Analysis (DNA) incorporates a worldwide network of sensors, customer input, and industry alliances working in conjunction with GajShield. SecureLabs Team to provide the fastest, most reliable and scalable security infrastructure in the industry. The result is a proven system that guarantees every GajShield customer is protected at the highest level possible, all the time.
Unique Gateway Architecture: GajShield’s Unique Gateway Architecture offers policy based Multi-WAN Failover, Load Balancing and traffic management options. Gateway Failover & Load Balancing supports any number of Internet connections over multiple physical interfaces and Bandwidth management assures maximum efficiency of Internet service. These flexible gateway Failover and Load Balancing features provide business continuity by assuring network up-time.
Unique Performance Management: GajShield’s smart engine correlates the information provided by security engine, network monitoring engine, deep inspection stream analyzer, wan availability, behavior analysis engine to provide real-time knowledge into the network. This comprehensive approach stops threats from the internet, eliminates unintentional user sabotage and gives business-critical applications highest priority increasing user and application productivity.
For more information about Gajshield Next Generation Firewall, please contact us here or Vietnamese site to consult and support further.