Professional Documents
Culture Documents
Product Presentation
Agenda
Product Overview
Security Gateways
Gateway Extensions
Management Tools
Security Gateway Features
Hosted Services: Astaro Mail Archiving
Agenda
Product Overview
Security Gateways
Gateway Extensions
Management Tools
Security Gateway Features
Hosted Services: Astaro Mail Archiving
Security Gateways
Comprehensive All-In-One Security for SMEs
Botnets Spam
Scam
Spam Phishing
Scam Hoax
Hoax
Viruses Spyware
Spyware Gray
Gray ware
ware Intrusions Denial
Denial of
of
Crackers
Crackers
Service
Service Distributed
Distributed Denial
Denial of
of Service
Service Ping
Ping floods
floods
Eavesdropper Script
Script Kiddies
Kiddies
Espionage
Espionage Malware
Malware Root kits
Adware
Adware P2P
P2P File
File sharing
sharing Trojans Spit
Spit Bots
Bots Backdoors
Backdoors
Buffer
Buffer
Overflows
Overflows Hackers
Hackers Malcode
Malcode Bugs
Bugs Key loggers Crime
Crime
ware
ware Pharming Competitors
Competitors Identity
Identity theft
theft Exploits
poisoning
poisoning
Snarf
Snarf attacks
attacks Spam
DNS
DNS
bots Spy
Spy bots
bots Trap
Trap doors
doors
Bluesnarfing
Worms
Worms Decrypting
Decrypting Reverse
Reverse engineering
engineering Phreaking
Phreaking Port Scanning
Cost
Time Investment
Router
Firewall
IPS
SSL VPN Gateway
E-Mail/Spam Filter
GW Antivirus Filter
Web Filter
WAN Link Balancer
Load Balancer
Total:
Software Appliance
Virtual Appliance
Integration of
Complete E-mail, Web
& Network protection
All-In-One Appliance
Networking-Features
for High Availability
and Load Balancing
Centralized
Management &
Reporting
Browser-based
Unified Management of
All Applications
Deployment Scenarios
10
Security Features
Wireless
Wireless
Security
Security
Essential
Essential
Firewall
Firewall
Wireless
Wireless Controller
Controller for
for
Astaro
Astaro Access
Access Points
Points
Multi-Zone
Multi-Zone (SSID)
(SSID) support
support
op
tio
op
na
l
n
tio
Stateful
Stateful Firewall
Firewall
Network
Network Address
Address Translation
Translation
PPTP/L2TP
PPTP/L2TP Remote
Remote Access
Access
Branch
Branch Office
Office Security
Security
Reverse
Reverse Proxy
Proxy
Web
Web Application
Application Firewall
Firewall
tio
op
op
tio
al
optional
Network
Network
Security
Security
Intrusion
Intrusion Prevention
Prevention
IPSec/SSL
IPSec/SSL VPN
VPN
Web
Web Application
Application
Security
Security
Mail
Mail
Security
Security
Anti
Anti Spam
Spam &
& Phishing
Phishing
Dual
Dual Virus
Virus Protection
Protection
l
na
Antivirus
Antivirus
na
l
Web
Web
Security
Security
URL
URL Filter
Filter
Antivirus
Antivirus &
& Antispyware
Antispyware
IM
IM &
& P2P
P2P Control
Control
Email
Email Encryption
Encryption
1
1
Secure Firewall
6
6
2
2
7
7
3
3
Detect malware in
HTTPS-data
8
8
Implemented Web
Application Firewall
4
4
9
9
5
5
Protect confidential
messages
10
10
Integrated Wireless
Controller
12
Intuitive Dashboard
Individual UserPortal
Comprehensive Reporting
13
1
1
Web interface
Reuse User-Definitions in
AD
6
6
2
2
Low maintenance
7
7
Integrated Supported
Reporting
3
3
8
8
4
4
9
9
Secure connection to
branch offices in 5 minutes
5
5
Fast Disaster-Recovery
10
10
Zero-Config HA
14
Hardware
Appliance
110/120
220
320
425
525
625
Small
networks
Medium
networks
Medium
networks
Large
networks
Large
networks
Large
networks
6 & 2 SFP
10 & 4 SFP
10 & 8 SFP
Max.
recommended FW
Users
10/50
150
350
1000
2500
4000
Max.
recommended
UTM Users
10/25
70
200
600
1300
2000
Environment
Network Ports
Software
Appliance *
Virtual
Appliance *
15
Deployment Models
Virtual Appliance
Application
Application
Operating
Operating
System
System
Hardware
Hardware
16
Agenda
Product Overview
Security Gateways
Gateway Extensions
Management Tools
Security Gateway Features
Hosted Services: Astaro Mail Archiving
17
Gateway Extentions
18
19
20
Available Solutions
21
Astaro RED
The easiest and most economic way to secure your branch offices in a
few minutes without the need for technical personnel at the remote
site!
22
Deployment Scenario
23
24
Easy Installation
Internet
TUNNEL
Branch Office
A041023040
1
Computer
Headquarter
25
26
Astaro RED 10
Technical Information
Solid steel chassis
No moving parts
1 WAN Port
4-Port LAN Switch
>30 Mbit/s VPN-throughput
<7 Watt power consumption
Unrestricted users
No Buttons, No GUI
27
Advantages
Easy to implement and manage
Virtual Ethernet cable
Setup in the branch in two minutes
Centralized configuration in ASG
No technical personnel required at the remote site
Cost efficient
Small, low-cost appliance
No maintenance or recurring costs in the remote site
Complete UTM security
Enterprise-class network, mail, and web filtering in central ASG
28
Wireless Security
Secure Wireless Networks for Businesses
29
30
Available Solutions
Low-end UTM-Appliances
with integrated Wi-Fi
31
32
Deployment scenarios
33
Easy installation
Guest
Internet
Finance
34
Centralized Management
35
36
Integrated Security
Strong Encryption
37
AP 10
AP 30
Up to 10 users
Up to 30 user
1 x 10/100 Base TX
1 x 10/100 Base TX
802.11 b/g/n
802.11 b/g/n
3 x internal antennas
Desktop/Wand mounting
Desktop/ceiling mounting
Power over Ethernet (802.3af)
PoE-Injector
PoE-Injector included!
included!
38
Advantages
Flexible access
Continuous signal in the whole office
Easy internet access for guests
39
Astaro Clients
Secure Remote Access to Business Networks
40
Deployment Scenario
41
42
* for free
43
44
45
Management Tools
Centralized Management of all Security Products
46
1
1
2
2
3
3
4
4
5
5
47
Available Solutions
How do you handle all management tasks today?
All devices will be managed separately
Very time-consuming
Tools for central management
Expensive and complex
Using self-provided Batch processing
Very time-consuming
For configuration only, monitoring and reporting generally not
possible
48
49
Real-Time Monitoring
Aggregated Reporting
Inventory Management
Device Maintenance
Central Configuration
Access Management
50
Easy Management
51
52
Products
Software Appliance*
Runs on Intel-compatible PCs and servers
Virtual Appliance*
Runs in any VMware environment
Free of
Charge
!
53
Advantages
1
1
2
2
3
3
4
4
5
5
54
Agenda
Product Overview
Security Gateways
Gateway Extensions
Management Tools
Security Gateway Features
Hosted Services: Astaro Mail Archiving
55
56
57
58
59
Intrusion Prevention
Identifies and Blocks Application and Protocol Related Probes and
Attacks through Deep Packet Inspection
Database of over 8,000 Patterns and Rules
Intrusion Detection and Prevention
Powerful Management Interface
DoS (Denial of Service Attack) and protection from port scans
60
61
E-Mail Antivirus
Dual Independent Virus Scanners for SMTP and POP3
Blocks Malware before it reaches email servers or desktops
Database with more than 800.000 virus signatures
Flexible Management
Can specify file formats (endings) and content (MIME type) to block
Emails and attachments can be dropped, rejected with message to
sender, passed with a warning, or quarantined
62
Antispam
Highest Detection Rate through Combination of Multiple Methods:
Reputation service (format and language agnostic)
Realtime Blackhole Lists (RBLs)*
Dialup Network Blocking*
Greylisting*
BATV (Bounce Address Tag Verification)*
SPF (Sender Policy Framework)*
Expression filter
Recipient verification*
Reverse-DNS and HELO Syntax Checks*
Flexible Management
Emails and attachments can be rejected with message to sender, passed with a
warning or quarantined * can reject emails even before body is transferred
63
Antiphishing
Astaro identifies and blocks phishing emails though several methods:
The virus scanner identifies phishing signatures
The URL filter blocks phishing server (categorized as suspicious)
Downloaded content will be blocked, if it is similar to known
phishing site methods
64
65
66
67
68
69
70
71
72
73
/solutions
/resources
/ASG
/NetSecurity
/datasheets
/AMA
/MailSecurity
/webinars
/ACC
/WebSecurity
www.astaro.com/products.php allowed
www.astaro.com/admin.php
not allowed!
www.astaro.com/resources.php?userID=123
74
User
75
76
ISP#1- Cable
lb
Fal
k
Servers
ISP#1Priority
ISP#2 Fallback
Servers
ISP#2Priority
ISP#1 Fallback
ac
Fal
lb a
c
k
ISP#2- DSL
77
Redundant
Connection
Switch
78
Session
Persistence
John
Web
Servers
B
Load balance
Internet
Health Check
79
Stateful Failover
< 2sec
NewSlave
Master
Synchronisation of:
IPSec tunnels
FW connections
Spooled & quarantined mails
Log-files
Config settings
Time/Date settings
Software version
Reporting
80
Slave
Cluster Nodes
Internet
Scalability
Scalability
LAN
81
Zero Config HA
Master
Slave
82
UPS Support
Controlled Measures for Power Cuts
Power
USB
Signaling
83
Routing
Optimal Path Selection and Stability
Static / Policy
Based on Source/Destination Interface/Network or Service
Dynamic
OSPF
Multicast
PIM-SM
84
DHCP
Dynamic IP Address Management
DHCP Server & Relay
Configuration per Interface
Static MAC/IP Mapping is possible
IPv4/IPv6 Support
IP Address DB
(192.168.1x)
#
External
DNS Server
.12
1
.
68
1
.
2
19
1.13
.
8
6
1
192.
192.168.1.14
DHCP Server/
Relay
85
DNS Proxy
Flexible Name Resolution
IPv4/IPv6
DynDNS-Support
Split DNS-Support
Local Cache
DNS Forwarder-Support
External
DNS Server
Local
DNS Server
86
100%
SAP
50%
Surf
P2P
VoIP
othe
r
P2P
Surf
SAP
VoIP
other
0%
87
Agenda
Product Overview
Security Gateways
Gateway Extensions
Management Tools
Security Gateway Features
Hosted Services: Astaro Mail Archiving
88
E-mail Archiving
Compliance & Productivity Requirement Solutions
89
90
Available Solutions
Mail Archiving Software
Mail Archiving Appliances
91
92
Deployment Scenario
93
94
Compliance
All necessary e-mails for the prescribed period
Auditor roles, including the dual control system
Auditor logs & search
95
Instant Discovery
Find e-mails instantly through
Google-like full-text search
96
Outlook Plug-In
Easy installation
Seamlessly integrated Plug-in
Direct message handling
(forward, reply, copy)
No employee training necessary
PST and mailbox upgrade included
97
Storage
Control
Backup
Storage
Backend
Firewall
Frontend
98
1 year license
$
$
$
$
$
$
$
$
$
$
$
$
$
$
480
1.150
2.210
3.250
4.245
6.245
8.155
11.985
15.655
23.015
30.060
36.070
51.940
66.485
$
$
$
$
$
$
$
$
$
$
$
$
$
$
3 years
license
1.150
2.765
5.310
7.805
10.190
14.980
19.570
28.765
37.570
55.230
72.140
86.565
124.655
159.860
$
$
$
$
$
$
$
$
$
$
$
$
$
$
5 years
license
1.730
4.145
7.965
11.705
15.290
22.475
29.355
43.150
56.360
82.845
108.210
129.850
186.985
239.340
Advantages
Easy Usability
Messages can be found in seconds
No employee training necessary intuitively designed Outlook Plug-in
Regulation-based archiving for years or decades
Maintenance-free
Setup in less than 15 minutes
AD Integration & Exchange synchronization
No hardware maintenance and upgrade
Best price/performance ratio
Less than 3 per user/month*
Unlimited Storage Capacity
* 100 user, 3 year license
100
Agenda
Product Overview
Security Gateways
Gateway Extensions
Management Tools
Security Gateway Features
Hosted Services: Astaro Mail Archiving
101