One, product introduction

Unified security gateway using depth application filter, intelligent flow control, special attack detection, transparent communication encryption and safety integrated key technology, will host protection, boundary protection, VPN encryption communication and other safety function organic integration, and promote the traditional security gateway comprehensive protection ability, reduce equipment investment and maintenance costs.

Two, the product features

(1) host protection: ensuring the host data security and safety operation

Host protective components using depth of application of filtration, point to the network VPN, intelligent flow control, virtual patch technology, for the enterprise internal server host provide professional safety protection. To prevent the host of sensitive data is unauthorized access; To prevent internal communication data is illegal interception; Blocking worm virus infected host, improve WEB, database, and other key service ability against the attack. The effective protection of the host data security and safety operation.

(2) boundary protection: to protect a network communication security, regulating the behavior of users on the Internet

Boundary protection component identification, the application of network behavior analysis, intelligent flow control, special attack detection technology, strengthen the enterprise LAN and LAN, LAN and Internet network behavior between the management and control, so that all flow all can positioning to specific user and application, make sure the important data can be priority through, to prevent unauthorized access, illegal Internet, Trojan QieMi the occurrence of events such as, for the enterprise to create a safe and controllable network environment.

(3) VPN: provide encryption communication tunnel, security communication security

VPN components that support the international standard IPSEC protocol, using intelligent networking, security access, transparent communication encryption, intelligent flow control technology, provides a virtual private network solutions, make the enterprise branches, business personnel can through the Internet and headquarters establish encryption communication tunnel, safe access network resources headquarters.

(4) platform change management

Product support access "unified security platform", through the platform to provide strategy management, correlation analysis, such as situation awareness of security mechanism, realize "platform is changed, intelligent" safety management, improve the efficiency of security management, improve the comprehensive protection ability.

(5) cloud protection mechanism

Product support access "cloud security center", the use of center provides real-time monitoring, intelligent security, dynamic strategy of security mechanism, realize "cloud protection" security goals, improve safety equipment protection efficiency and protection ability.

Three, typical deployment

As the chart shows, unified security gateway deployed in the Internet, the network will be divided into multiple terminal domain and server domain. Through such deployment, unified security gateway first for enterprise server hosting provides the security protection, resist vulnerability scanning, SQL injection and XSS cross site scripting, trojans QieMi attacks, to ensure the safe and stable operation of the server; At the same time encryption departments terminal and server of communication between the host data, to prevent internal data is illegal interception; Standard network access behavior, prevent users unauthorized access server sensitive information, prevent users go to work in time for networking games, see network video, fry, release information without approval irregularities, banned P2P, network video bandwidth consumption such as the applications. Provide VPN connection service, branches and mobile office users can set up headquarters and VPN connection, safe, efficient access to the resources of the headquarters.