You are here:

Perimeter Defense

Prevention is better than cure

Recent years have witnessed a massive increase in the threat potential from attacks on systems and information from external and internal networks, e.g. through targeted attacks, industrial espionage, dissatisfied employees, or external service providers. Measured by the potential damage, a risk-oriented effort can ensure effective protection.

Threat, risk, and need for protection

For example, this can be achieved with a next generation firewall, which lets you control which data come in and go out. A firewall constitutes the essential basis for the security of your networks, systems, and data. As a firewall is only a basis but not a universal remedy, businesses operate various solutions in order to keep viruses, spyware, and direct attacks in check. In fact, few businesses have the resources that would be needed in order to deploy dedicated solutions for all types of threats.

Integrated perimeter defence

New, integrated security solutions, also referred to as Unified Threat Management (UTM) systems, solve the defence and complexity issues. Instead of using a cluttered architecture consisting of individual systems (packet filter, VPN gateway, virus/spam protection solutions, URL filter, spyware blocker, intrusion prevention systems, etc.), UTM systems integrate all needed security applications in just one system. The advantages of this approach are evident: 

  • Significantly reduced complexity
  • Greatly simplified integration in existing environments
  • Easier operational management (patching, log analysis)
  • Massive cost savings (reduction in hardware, licence and maintenance costs, power consumption)

Thinking means comparing

Modern Unified Threat Management systems combine numerous security applications on one system, e.g.:

  • Deep packet inspection
  • Application level gateway
  • VPN gateway
  • Virus protection
  • Spam control
  • URL filtering
  • Spyware/phishing control
  • Intrusion prevention
  • E-mail encryption

Depending on the manufacturer, the configurability is effectively implemented in the form of a uniform management GUI. Moreover, the setup of HA structures is much easier and cost-efficient with an all-in-one system than with a kaleidoscope of different systems.

Concentrate on what counts

The old counter-argument that "a firewall is not a Swiss army knife" is no longer fully true, as manufacturers ensure a very secure internal system architecture that isolates running processes from each other. Moreover, the overall security in a networked environment can only be as strong as the weakest link in the network. For example, a high security standard at headquarters is of little use if the security measures at VPN-connected subsidiaries are weak. UTM systems can be used throughout the company at all locations, as the costs merely amount to a fraction of that of multiple-stage systems. For the benefit of our customers, we are specialised in Astaro™, Palo Alto Networks, Barracuda™, Checkpoint™, and Juniper Networks™. For the systems from these manufacturers, we have a wealth of practical experience and up-to-date knowledge.  The solutions of these manufacturers can be used to satisfy virtually all needs in the best possible way.

Additional Information

Gartner Magic Quadrant for Enterprise Network Firewalls (pdf) >>