Ideco NGFW

The main articles are:

• NGFW (Next Generation Firewall)
• Firewall

2024

Ideco NGFW 18 with Dr.Web antivirus

Ideco has released an updated release of the Ideco NGFW 18 firewall. The company announced this on September 30, 2024.

The added capabilities of Ideco NGFW take into account the request of enterprise companies for a high level of corporate data protection. Therefore, in NGFW 18, the development team provided application and IPS security profiles in the firewall, advanced functionality of VCE virtual contexts, optimized traffic processing performance. In addition, WAF security profiles for web applications and sandbox support have been added to the release. Also, the functionality of connecting users via VPN has been significantly supplemented, including flexible management of transmitted routes and integration with RADIUS for 2FA.

NGFW 18 users can now upload their own signatures to intrusion prevention. This increases the ability to customize security for each department or company team, which is especially important for the Enterprise segment business. In addition, this version of the firewall has improved the stability of the web interface SSH and to DDoS-, to the attacks as well as updated the role-based administration model with the ability to authorizations administrators via RADIUS, and. Active Directory ALD Pro

Integration into NGFW antivirus Dr.Web allowed IT teams to complement and strengthen protection, replacing less efficient solutions with more powerful tools such as Dr.Web and Kaspersky. Updated VPN clients made it easier for users to connect Linux and, MacOS improving support for private virtual networks.

Add DNS Security Module

The vendor Ideco presented NGFW cloudy with the DNS Security module on July 16, 2024. This technology provides a high level of protection against botnets and other cyber threats, reopening business opportunities that are not available after the departure of Western vendors Russian.

In the international market, DNS Security already occupies a significant share of the information security market, about a third of the NGFW market. Players such as Cisco, CheckPoint and Sophos are investing heavily in the development of their DNS Protection products, understanding the importance of this technology. So only according to Ideco, almost 88% of cyberattacks use DNS technologies, and 33% of the total number of attacks can be prevented at the level of filtering DNS traffic.

DNS - one of the most ancient and indispensable protocols, Internet which is open on almost all network devices. This makes DNS vulnerable to attackers who can easily create many domains and update them as needed. Since DNS queries are often not tracked, it is easier for attackers to act through DNS than other channels, communications including using DNS transport for network segments not connected to the network. Internet As a result, DNS becomes the first layer of network protection that requires careful control and protection.

The DNS Security module in Ideco NGFW relies on. cloud services SkyDNS Ideco NGFW supports easy-to-configure integration with the SkyDNS service using the DNS settings to servers the SkyDNS resolver. In the near future, to improve user convenience, it is planned to display integration settings inside the Ideco Center central console. An important advantage of DNS filtering is that it can be implemented in almost half an hour.

Ideco NGFW with cloud DNS Protection is a significant step in the development of our company. We strive to ensure maximum protection of Russian enterprises from cyber threats at the international level. DNS Protection is the first step. In the future, we plan to offer an even wider range of cybersecurity solutions, - said Dmitry Khomutov, director of Ideco.

As of July 2024, Ideco and SkyDNS are actively sharing security cases and successful experience in countering threats.

Ideco NGFW 17.0 with GRE over IPSec and GRE tunnel support

The solution for reliable cyber protection of enterprises is embodied in the beta version of Ideco NGFW 17.0. Advanced technologies and innovative features of the system will help prevent, attacks phishing protect valuable data companies and ensure the safety of employees on the network. This was Ideco (Aydeco) announced on May 16, 2024.

Added Ideco NGFW functionality includes virtual VCE contexts, session synchronization cluster mode, - authentication VPN users via RADIUS-, server support for GRE over IPSec and GRE tunnels, ZTNA (Zero Trust Network Access) for checking client devices and using device profiles in policies, firewall Ideco client for, MacOS setting firewall rule expiration times and CEF format support, and selecting/for with TCPUDP integration external services (SIEM and others) by syslog.

Among the updates in Ideco NGFW 17.0, we note:

• An updated platform based on the Linux 6.7.9 kernel, which will increase system stability and performance.
• An updated version of intrusion prevention for better protection against malicious attacks.
• An improved application monitoring module to more effectively monitor and manage application traffic on the network.

Now on the dashboard and in monitoring, information on the state of IPSec tunnels is available, including channel loading, packet loss and jitter, which will help quickly identify problems and improve the quality of the network connection.

Added capabilities to fine-tune WCCP to optimize network performance and improve resource utilization. Changes were made to the publishing settings of internal NGFW services (for example, personal account, web mail interface) in the reverse proxy server, which guarantees more secure and efficient operation of services through NGFW.

In a short period of time, this is the third major release that not only the Ideco team was waiting for, but also our customers from Enterprise to SMB segments. In NGFW 17.0, we not only improved performance and network optimization, but helped Russian businesses a few steps ahead of cyber threats, ensuring the reliable protection and security of the organization's digital assets, said Dmitry Khomutov, director of Ideco.

Compatibility with Red ADM

On April 22, 2024, Red Soft and Ideco reported that the Red ADM centralized infrastructure management system and the Ideco NGFW firewall are compatible and work stably. In combination, products become a ready-made solution both for organizing the internal operation of the infrastructure and for reliable protection against external threats. Read more here.

2023

Ideco NGFW VPP

Ideco on November 29, 2023 released NGFW VPP, a next-generation firewall for protecting information from external threats, offering multifunctional capabilities for the Enterprise segment.

According to the developers, the Ideco NGFW VPP firewall is based on best practices for scanning traffic. In addition, content filtering based on network traffic allows you to restrict the access of internal users and devices to dangerous Internet resources.

Ideco NGFW VPP offers integration with external solutions such as SIEM via the syslog protocol. This enables you to transfer security event logs to the SIEM solution for centralized monitoring and analysis. It also allows you to control access to various applications, including cryptominers, instant messengers, torrent clients and other more than 250 applications. This is achieved by the ability to control access to them through a single interface for creating L4/L7/IPS/Application Control rules with priority.

Based on its own DPDK/VPP-based technology network stack, Ideco NGFW VPP provides high traffic filtering speed. According to Ideco, this ensures efficient processing of large volumes of traffic and network security with minimal latency.

"Ideco NGFW VPP is a tool for providing cyber security in today's business. Its functionality, performance and scalability meet all the requirements and needs of the Enterprise sector, ensuring reliable protection of corporate networks from modern threats, "said Dmitry Khomutov Ideco Director.

Complete transition to NGFW solutions

November 29, 2023 Ideco announced the complete transition to NGFW solutions. According to the company's idea, this will satisfy all the requirements of large companies in the market in the region. safety

Thanks to kernels Linux the 6.3-based platform ON , it is protected from interruptions in the processing of large traffic and complex operations. The user can also configure the software for his tasks by setting rules firewall for the zones where IPSec and client VPN connections are located.

"Ideco NGFW reflects the functionality and security capabilities of the network for large businesses. Quick system updates help you save resources and protect sensitive information. In 2024, we will create the Ideco NGFW 17.0 solution, which will further cover the needs of the Enterprise segment, "Dmitry Khomutov, director of Ideco, shared the company's plans.

Ideco NGFW 16.0 with reverse proxy function

Ideco has introduced the next generation of firewall - Ideco NGFW 16.0. This solution has been designed to take into account the latest trends in cyber threats and offers up-to-date features to ensure maximum network protection. The company announced this on October 30, 2023.

Among the added features:

Zone Based Firewall for simple rule creation in complex networks - with a large number of network interfaces, segments, IPSec and client VPN connections. Also added the ability to integrate with Astra ALD Pro, which ensures user authorization based on the domestic OS and increases the level of security in the network.

To protect against DoS attacks related to published web resources, the NGFW 16.0 firewall offers a reverse proxy function (now with WAF and anti-DoS). This helps prevent the penetration of malicious traffic and keep resources working. An important feature is the addition of a web access log to traffic reports. This simplifies the monitoring and analysis of users' web activity, allowing them to identify possible threats and security breaches. Another significant feature is the improved configuration of VPN user authorization, including two-factor authentication (2FA). This provides increased security when accessing the network remotely.

Another important feature is the ability to create routes for IPSec connections (including BGP), which allows you to establish secure connections between remote network segments. Authorization of users of trusted Active Directory domains allows you to work on networks with multiple domains that are combined by trust.

One notable change is the renaming of the product to Ideco NGFW. This name reflects its network security functionality and capabilities.

Ideco NGFW 16.0 has sufficient performance and capabilities to work in the ecosystem of domestic IT solutions and services, for networks of companies of any complexity. Step by step, we strive to help customers solve the problems of switching from foreign solutions, while maintaining the level of security and reliability of network services, "said Dmitry Khomutov, director of Ideco.