Description
Features:
Enterprise SD-WAN Connectivity and NGFW Security for Distributed Enterprises
Modular Appliances for Every Environment
Our broad range of appliances provide the right price-performance and form factor for each location; plugable interface cards let you change networks with ease.
Multi-link Connectivity for SD-WAN
Broadband, wireless, and dedicated lines at each location can be centrally deployed and managed, providing full control over what traffic goes over each link with automated failover.
Policy-Driven Centralized Management
Smart Policies describe your business processes in familiar terms and are automatically implemented throughout the network, managed in-house or via MSSP.
Built-in NGFW, VPN, Proxies, and More
Unparalleled security comes standard, from top-ranked Next Generation Firewall and IPS to rapid-setup VPNs and granular decryption, as well as our unique Sidewinder proxy technology.
Human-Centric Endpoint Context
Access policies can whitelist or blacklist specific endpoint apps, patch levels or AV status. Users’ behaviors are consolidated into actionable dashboards.
CASB and Web Security
Our reknowned URL filtering and industry-leading cloud services work together to protect your data and people as they use apps and web content.
APIs
Rich application programming interfaces enable SD-WAN and NGFWs to be integrated with orchestration, management, and third-party analysis infrastructure.
High Availability, Mixed Clustering
Active-active clustering lets you mix up to 16 different models of appliances for unrivaled scalability, longer lifecycles, and seamless updates without dropping packets.
Automated, Zero-Downtime Updates
Policy changes and software updates can be deployed to hundreds of firewalls and IPS devices around the world in minutes, not hours, without the need for service windows.
Actionable, Interactive 360° Visibility
Graphical dashboards and visualizations of network activity go beyond simple reporting, enabling admins to drill into events and respond to incidents faster.
Top-Ranked Anti-Evasion Defense
Multi-layer stream inspection defeats advanced attacks that traditional packet inspection can’t detect—see for yourself in our Evader video series.
Unified Virtual and Physical Security
Native support for AWS, Azure and VMware has the same capabilities, management, and high performance of our physical appliances.
Anti-Malware Sandboxing
Forcepoint Advanced Malware Detection blocks previously undetected ransomware, zero-days, and other attacks before they steal sensitive data or damage your systems.
Certifications
Forcepoint Next Gen Firewalls are rigourously tested to comply with major industry and government certification requirements.
Specifications:
Platforms | |
---|---|
Physical Appliance | Multiple hardware appliance options, ranging from branch office to data center installations |
Cloud Infrastructure | Amazon Web Services, Microsoft Azure |
Virtual Appliance | x86 64-bit based systems; VMware ESXi, VMware NSX, Microsoft Hyper-V, and KVM |
Endpoint | Endpoint Context Agent (ECA), VPN Client |
Virtual Contexts | Up to 250 |
Centralized Management | Enterprise-level centralized management system with log analysis, monitoring and reporting capabilities |
Firewall Features | |
---|---|
Deep Packet Inspection | Multi-Layer Traffic Normalization/Full-Steam Deep Inspection, Anti-Evasion Defense, Dynamic Context Detection, Protocol-Specific Traffic Handling/Inspection, Granular Decryption of SSL/TLS Traffic, Vulnerability Exploit Detection, Custom Fingerprinting, Reconnaissance, Anti-Botnet, Correlation, Traffic Recording, DoS/DDoS Protection, Blocking Methods, Automatic Updates |
User Identification | Internal user database, Native LDAP, Microsoft Active Directory, RADIUS, TACACS+, Microsoft Exchange, Client Certificates |
High Availability |
|
IP Address Assignment |
|
Routing |
|
IPv6t | Dual stack IPv4/IPv6, ICMPv6, DNSv6, NAT, Full NGFW features |
Proxy Redirection | HTTP, HTTPS, FTP, SMTP protocols redirection to Forcepoint or third party Content Inspection Service (CIS) on premise and Cloud |
Geo-Protection | Dynamically updated source/destination country or continent |
IP Address List | Predefined IP categories or using custom or imported IP address lists |
URL Filtering (Separate Subscription) | Custom or imported URL lists |
Endpoint Applications | Application name and version |
Network Applications | 7400+ network and cloud applications |
Sidewinder Security Proxies | TCP, UDP, HTTP, HTTPS, SSH, FTP, TFTP, SFTP, DNS |
SD-WAN | |
Protocols | IPsec and TLS |
Site-to-Site VPN |
|
Remote Access |
|
Advanced Malware Detection and File Control | |
Protocols | FTP, HTTP, HTTPS, POP3, IMAP, SMTP |
File Filtering | Policy-based file filtering with efficient down selection process. Over 200 supported file types in 19 file categories |
File Reputation | High speed cloud based Malware reputation checking and blocking |
Anti-Virus | Local antivirus scan engine* |
Zero-Day Sandboxing | Forcepoint Advanced Malware Detection available both as cloud and on-premise service |
Component | Details for license binding |
---|---|
Management Servers |
|
Other SMC servers |
|
Master NGFW Engines | Enter the POS code of a Forcepoint NGFW appliance (see the label attached to the appliance). |
NGFW Engines |
|
Buy Forcepoint Firewall online from Firewall Firm’s IT Monteur Store