WatchGuard Fireware XTM

Fireware XTM - the protected operating system on the optimized Intel - the compatible server platform. It creates a basis of family of solutions of security of WatchGuard. One operating system works on all WatchGuard XTM devices.

Possibilities of the Fireware XTM operating system

Basic opportunities of the firewall

Package filters with tracking of connections Proxy rules: HTTP, HTTPS, VOIP, FTP, SMTP, POP, DNS, TCP-UDP.

Enhanced network capabilities

Multi-WAN: Several different algorithms Multi-WAN; At connection of two or more external interfaces – the Multi-WAN function joins automatically; There Is an opportunity to connect 4 external channels from different providers that increases reliability of a system.

• Function of routing on politicians:
  • routes the outbound traffic on the basis of rule parameters (overlapping of routing tables),
  • broadband connection can be used for crucial applications.

• Fault tolerance of VPN connections:
  • Additional VPN gateways (a point of an input exit of tunnels) for ensuring fault tolerance of VPN connections;
  • Fireware XTM OS can use methods for detection of a rupture of a tunnel, such as - "IKE Keep – alive" or "Dead Peer Detection".

• Cluster configurations:
  • Active / Passive - provides high availability. One device is active. If it failed – the second immediately enters work; Active / Active - provides high availability and load sharing. Both devices in a cluster are active, and share burden among themselves.

• Distribution of the entering loading for servers:
  • Performs protection of server farms.

• Control functions by traffic and QoS:
  • Allows to select for crucial applications, necessary bandwidth.

• VPN between offices

• • Client VPN access: IPSEC, SSLVPN, PPTP
  • Branch Office VPN (VPN between offices)
  • Mobile VPN IPSec and SSL connections: Udalenne users can use functionality of Mobile VPN for remote connection to resources of the company using IPSec and SSL technologies.

• Authentication:
  • in local base;
  • Radius;
  • Windows Active Directory;

• * LDAP;
  • Function of single authentication.

Versions of the Fireware XTM operating system

• Fireware XTM is the standard version of OS for the majority of models of devices.
• Fireware XTM Pro is the expanded version of OS, it is delivered with WatchGuard XTM devices of 8 series, WatchGuard XTM 1050 and XTM 2050.
• Fireware XTM can be updated to Fireware XTM Pro by installation of a license key.
• Fireware XTM Pro – adds features for a clustering, control function and prioritizing of traffic, support of dynamic routing protocols, a maximum of VLAN, routing on politicians, balancing of loading between servers and the maximum number of client SSL VPN connections.

Functions of the reporting Fireware XTM allow to create groups of devices in WatchGuard Server Center and to develop reports for groups of devices. Reports can be reformatted in HTML or PDF. By means of the menu of parameters it is possible to configure location of storage of reports and also the logos and URL used in HTML-reports.

Incomplete list of functions of the reporting

• The report of the packet filter – on service, on time and on a session.
• The report on web trends.
• Audit of web transactions.
• The most popular domains.
• Detailed data on the URL addresses on time.
• The most active clients.
• The report on an intrusion prevention.
• Capacity of the VPN tunnels.
• Notifications.
• Report of work of anti-virus service on viruses.
• Details on viruses.
• The report of the traffic transmitted via the proxy server on proxy servers.
• The report of the traffic transmitted via the proxy server on time.
• The report of the traffic transmitted via the proxy server on sessions.
• Report of spamBlocker.
• Details of the SMTP proxy server.

2014: Fireware XTM 11.9

On July 7, 2014 WatchGuard Technologies announced a release of the new version of Fireware 11.9.

The new version of OS maintains availability to users - deployment of the solutions Unified Threat Management (UTM) and Next-Generation Firewall (NGFW), setup and management, both wire, and wireless network security using one device.

The optimized wireless functionality is maintained by the new version of Fireware 11.9. With it need for additional solutions for management of a wireless network is eliminated, the uniform web interface is provided to IT specialists for management and monitoring of all network in real time.

The optimized functionality 11.9 allows IT specialists to compare quickly wireless access points (AP) and coverings, to change wire and wireless security policies at the same time for ensuring compliance with traffic and a scope of standards of security on all network infrastructure. The organization can also estimate traffic and the conflicts of channels, to define vulnerabilities, to manage capacity. Thus, problems can be solved in real time, including a problem of unauthorized access points, specified in the company.

As a part of the version of Fireware 11.9 services:

• antivirus,
• antispam,
• control of applications,
• protection against threats (ATP)
• data loss prevention (DLP).

Fireware is integrated with WatchGuard Dimension by means of any WatchGuard device.