• StoneGate Management Center
• StoneGate FW / VPN
• Appliances
• Virtual Firewall
• Software Solutions
• Antivirus Protection
• Clustering
• Deep packet inspection
• DoS Protection
• IPS Integration
• ISP Load Balancing
• Mobile Network Access
• Office Connectivity
• Quality of Service
• Securing VoIP
• Server Load Balancing
• SSL Inspection
• Web filtering
• StoneGate IPS
• StoneGate SSL VPN

• Remote office protection
  
• Granular configuration
• Transparent to users
  

Antivirus Protection

Antivirus protection for traffic through StoneGate Firewall

StoneGate Firewall/VPN solution can be used in remote offices as the single security gateway solution as it inspects content for malware in transit.

StoneGate Firewall scans HTTP, SMTP, POP3 and IMAP protocols also for viral content.

The administrator can control what traffic is scanned. For example, he may not want to scan traffic to corporate intranet over VPN for performance reasons. Antivirus protection is fully controlled with flexible StoneGate Firewall access rules.

The antivirus engine updates itself automatically. Together with StoneGate NextGen Firewall's protocol inspection features for HTTP, SMTP, POP3, IMAP and SIP protocols this feature provides strong protection for remote offices.

Benefits

• Remote office users are protected against Internet threats
• Improve security by scanning web and mail traffic content
• Improve performance by allowing web traffic and web mail traffic directly from remote offices
  

Integrating an external antivirus gateway to the StoneGate Security Solution

Although an advanced firewall can do much more than filter packets based on sources and destinations, some threats are most efficiently tackled by complementing the firewall with external content inspection servers (CIS) and external anti-virus gateways.

With StoneGate, this integration can be done easily. Just add one rule to the security rule base and activate an agent to redirect the network traffic for inspection server. Agent redirection is truly transparent and does not require any additional configurations on the client machines.

For instance, incoming SMTP e-mail traffic could be forwarded from the firewall to the content inspection server for virus and content checking.

According to the firewall security rules, content inspection server removes suspicious content and the checked packets are returned back to the firewall for routing to their final destination.

Viruses and hazardous content will be discarded before packets enter the internal network.

Content inspection server can also be used to control outbound Web traffic. The firewall can redirect traffic to a content inspection server, which examines the destination web address (URL). If the site is on the list of inappropriate sites, traffic is denied. Approved traffic continues as usual.

Benefits

• Possibility to use best-of-breed content inspection products
• Get best performance by separating tasks to dedicated servers
• Save money by using existing content inspection solutions