Integrated Threat Prevention
Fully integrated real-time threat prevention protects enterprise networks from a wide range of threats, complementing the policy-based application visibility and control that n-Telliguard next-generation firewalls deliver.
- Protection from network and application vulnerability exploits (IPS), viruses, spyware and unknown threats in full application context.
- Protection delivered in a single stream-based scan, resulting in high throughput and low latency.
Single policy table reduces the management overhead associated with policy creation to block threats, control applications and limit non-work related web activity.
Today’s networks and their users are under attack from an ever-expanding universe of threats, malware, and vulnerabilities. More and more of these threats are focused on financial gain as opposed to notoriety, and hackers have learned to use evasive applications, tunneling and encryption to avoid detection by traditional IPS solutions. To make matters worse, many organizations have resorted to the habit of “see a security problem, buy an appliance”, leading to a lack of coordination, poor visibility, and poor performance. This has left a dangerous situation, where security solutions are increasingly fractured and difficult to manage, while the hackers are increasingly adept at penetrating them.
n-Telliguard powered by Palo Alto Networks offers a unique and modern approach to threat prevention that begins by proactively reducing the vulnerability of the network, and then fully inspecting all allowed traffic for threats. n-Telliguard lets organizations instantly and dramatically reduce the attack surface of their networks by preventing or limiting risky or unnecessary applications or features. This includes a variety of applications and technologies that are regularly used by attackers to hide their attacks such as proxies, encryption and encrypted tunnels.
Next, n-Telliguard takes the unique step of fully inspecting all allowed traffic irrespective of port or evasion attempt. This enables n-Telliguard to catch all threats even if they are transmitted over non-standard ports or tunneled within other applications or protocols. A single unified threat engine performs IPS, stream-based anti-virus prevention, and blocking of unapproved file types and data. Additionally, the cloud-based n-Telliguard Advanced Persistent Threat Prevention engine identifies unknown and targeted malware and exploits that may have no known signature. This gives organizations the unique ability to reduce their exposure, ensure visibility into evasive traffic and protect from all types of threats in a single pass of traffic.