| Developers: | Infotecs |
| Last Release Date: | 2024/12/25 |
| Technology: | IS - Firewalls |
Content |
Main article: Firewall
PAC ViPNet xFirewall is a security gateway - a firewall that is installed at the edge of the network, provides traffic filtering at all levels, and allows you to create a granular security policy based on user accounts and an application list.
2024: ViPNet xFirewall Release 5.6.2
On December 25, 2024, InfoTeCS announced the completion of certification upon notification of changes in the FSTEC of the Russian software and hardware complex (PAC) ViPNet xFirewall 5.6.2 within the framework of the current certificate No. 4501 of 28.12.2021.
PAC ViPNet xFirewall 5 is a family of ViPNet xFirewall security gateways that implement the next generation firewall (NGFW) paradigm and allow you to create granular security policies based on user accounts and application list. ViPNet xFirewall 5 is designed to comprehensively solve information security problems in corporate networks, provides traffic filtering at all levels, antivirus protection, detection and neutralization of network intrusions.
This version has improved SSL the inspection capabilities: added the ability to decrypt and analyze (inspect) the TLS 1.3 protocol, analyze protocol/2 traffic, HTTP the ability to configure SSL inspection based on resource certificates and their significant fields, which allows you to identify and prevent information security threats. authentication User authorization is also implemented when connecting via the protocol SSH using RADIUS-. servers Added the ability to reset PAC ViPNet xFirewall 5 to factory settings if it is not possible authentications in the management console.
2022: ViPNet xFirewall 5
The ViPNet xFirewall 5 appliance (PAC) is the development of ViPNet xFirewall security gateways that implement the NGFW paradigm and allow granular security policies to be created based on user accounts and application list. ViPNet xFirewall provides traffic filtering at all levels, antivirus protection, and prevention of information security policy bypass.
According to January 2022, ViPNet xFirewall 5 provides application layer firewall (DPI - deep packet inspection). DPI uses various techniques for identifying user application traffic: based on ports and protocols, signature method, heuristic method. These approaches even identify applications whose traffic is encrypted or masked.
Use Cases:
- Protect the perimeter of the network.
- Delimitation of access within the network.
- Organization of DMZ.
- Control of access to Internet resources.
- Comprehensive network threat protection.
Features
A granular security policy that is built in terms of "User" - "Application" - "Protocol" - allow/deny provides:
- safe use of personal devices for work purposes with full compliance with the company's security policies - BYOD (Bring Your Own Device);
- Reducing the cost of Internet traffic consumption
- minimizing the surface of attacks;
- integration with the IPS service - detection and neutralization of network intrusions.
The ViPNet xFirewall 5 hardware and software complex is certified by the FSTEC of Russia.
2021: Obtaining the Russian FSTEC certificate for ViPNet xFirewall 5
On December 29, 2021, InfoTeCS announced that it had received the FSTEC of Russia certificate for the ViPNet xFirewall 5 hardware and software complex (PAC).
Certificate of Conformity No. 4501 dated 28.12.2021 confirms that ViPNet xFirewall 5 hardware and software complex meets the information security requirements specified in the documents:
- "Security requirements information that establish levels of trust Information Security Tools in and" (security tools information technology FSTEC, Russia 2020) - 4 levels of trust.
- "Requirements for firewalls" (FSTEC of Russia, 2016), "Protection profile of firewalls of type A of the fourth protection class. IT.ME.A4.PZ "(FSTEC of Russia, 2016).
- "Requirements for firewalls" (FSTEC of Russia, 2016), "Protection profile of firewalls of type B of the fourth protection class. IT.ME.B4.PZ "(FSTEC of Russia, 2016).
- "Requirements for intrusion detection systems" (FSTEC of Russia, 2011), "Security profile of intrusion detection systems of the fourth protection class network level. IT.SOV.S4.PZ "(FSTEC of Russia, 2012).
PAC ViPNet xFirewall 5 is a family of security gateways that implement the NGFW paradigm and allow you to create granular security policies based on user accounts and an application list. ViPNet xFirewall 5 provides traffic filtering at all levels, antivirus protection, and prevention of information security policy bypass.
2020: AVSoft Athena Compatibility
On February 12, 2020, the companies InfoTeCS AB Soft announced the successful completion of compatibility testing of their products:firewall the ViPNet xFirewall security gateway and the detection and analysis system. harmful ON AVSoft Athena
A script was tested for checking the content of malicious content of files downloaded from the Internet to the ATHENA sandbox through the xFirewall proxy server service using ICAP.
The ViPNet xFirewall serves as a gateway between applications running on LAN hosts and the external network resources that these applications access (acts as a proxy server). ViPNet xFirewall inspects and monitors network traffic not only at the port and protocol level, but also covers all 7 layers of the OSI network interaction model, including the layer of protocols and application functions, which allows you to block the most complex attack methods.
The AVSoft Athena v2.0 system runs on multi scanner and sandbox technologies. Each file undergoes multilevel validation by static and dynamic analysis methods using. algorithms artificial intelligence The combination of multiscaner and sandbox technologies for examining files for suspicious content and behavior significantly improves the accuracy of the scan result, detects zero-day threats, and saves resources. IT infrastructures
The combination of firewall, multiscaner and sandboxes technologies allows consumers and information system developers to create a comprehensive information security system that simultaneously provides advanced analysis of network traffic, detects the operation of more than 2,000 network applications and allows detecting suspicious objects in traffic (files) that are subjected to advanced sandbox analysis, thereby protecting the network, mail and web traffic, workstations, servers, and other IT infrastructure objects from modern threats.
| The site content is translated by machine translation software powered by PROMT. The machine-translated articles are not always perfect and may contain errors in vocabulary, syntax or grammar. Read original article If you find inaccuracies or errors in the results of machine translation, please write to editor@tadviser.ru. We will make every effort to correct them as soon as possible. |