Hello! I'm PR the security defender
Do you need to change from a traditional firewall (FW) to a UTM or next-generation firewall? Let's look at the differences and commonalities of these people by receiving these questions often.
Identify the advantages and disadvantages of each device and select and configure the best products according to the customer's network configuration and required functions to reduce costs and ease future management.
[Equipment Development Order]
What is Firewall?
An access control system that authorizes/blocks access to IT assets of an enterprise or organization when they are connected from the outside to the inside or from the outside. It is typically used to prevent internal critical information from being leaked illegally and to protect information resources from hacking attacks, while also used to control external resources to be accessed by internal users.
There are various types of firewall products from Korea and abroad, and it is hard to find products that only provide firewall functions due to the activation of the UTM market and the increased demand for various security functions.
What is Unified Threat Management (UTM)?
Integrated equipment that directly combines multiple security features from a single hardware in terms of integrated threat management. Key features include firewall, VPN, IPS, Anti-DDoS, web filtering, Anti-Virus, and spam blocking.
- Advantages: It can be handled by a single device with multiple functions, making the network configuration simple.
- Disadvantages: Performance issues may arise, increased costs due to license purchase by required function
[UTM Manufacturer]
Domestic(Republic of korea) : Secure Eye, Ahnlab, Hansol Nexge, Future System, Xgate, NX Systems, etc.
Foreign production: Checkpoint, Fortinet, Juniper, Cisco, Watchdog, Sonic Wall, Hillstone, etc.
Although CC certification has weakened a little recently, three years ago, NIS CC certification was necessary and it was necessary to check the rating (EAL1 to 4+) in advance.
What is the next generation of firewalls (NGFW)?
Why New Generation Firewall? Do you think he'll come out?
Limitations of existing firewalls and UTM
The advent of the first generation packet filter firewall was in the mid-1980s. Typically included in the Router, controlling and blocking ports by IP changed user traffic to applications, but the firewall remained the same.
UTM added a variety of security requirements and was able to handle various functions due to the evolution of hardware, but it faced the limitation of performance issue just by raising FW + IPS + VPN.
The next generation of firewalls adds performance issue improvement + application control for UTM equipment.
To improve performance, we designed independent CPUs, memory, and L7 layers of application control.
Companies that use firewalls or UTMs have a lot of recent inquiries, offering features such as instant messaging, SNS, mail sending/receiving, web filtering, and APT defense that require control.
Typical products include Paloalto, Portinet, Checkpoint,Secure Eye, Anlab, Xgate, and Hansol Nexge. Recently, the company has expanded its defense against advanced Persistent Threat (APT) advanced threat attacks by adding detection/blocking functions that link cloud-based information provision (blue code, SMT, FireEye, etc.).
There are so many good products in the market.
From cheap to expensive equipment, not all expensive equipment is good.
It is a security guard PR that finds and develops the best products through the functions I need, in-house network configuration, and traffic analysis, along with products that are easy to deploy and operate, and solutions linked to future business expansion.
댓글