Unified Threat Management (UTM)
Today, every network (LAN or WAN) now faces a diverse range of security threats, so much so that it is becoming a too costly endeavour to guard against them all, and extremely costlier to consider ignoring them. As a result, Internet security is understandably one of the subjects given very high priority by security informed management today. The present day “advanced” threats (Internal & External) to corporate data and IT network infrastructures can no longer be handled with levity but with very sophisticated security solutions and that is integrated by competent professionals. 
The biggest security risk faced today is that, in the attempt to effectively combat threats, the complexity of their integrated security solutions is huge; which further complicate their problems and open them to various attacks.
With this in mind, KITS technologies; working with the global leader in Unified Threat Management (Gateprotect ®) offer proactive and “easy” to use Network Security solutions that delivers breakthrough performance for various network environment, ranging from Internet, Intranet / Extranet, LAN / WAN, VPN, branch offices and Data centre protection with maximum security that put you confidently in control of your network in a simple way.
Our unified threat management (UTM) solution is specially and sophisticatedly designed to proactively respond to all threats (Internal & External), by providing a single and effective POC (Point Of Control) to all Network & Internet security and QOS challenges.
The singular solution will provide the following in a simple to use approach;
- Gateway Antivirus,
- Gateway Anti-spam,
- Firewall - Stateful inspection,
- intrusion detection (IDS) and prevention (IPS),
- Virtual Private Network (VPN) - IPsec / SSL
- Web Content flirting and access control
- Network Monitoring / reporting,
- QOS - Traffic shaping - Bandwidth Management, HTTP Cache.
- Load balancing
- Etc…
Whatever you may want to accomplish regarding IT security/ Content Filtering, VPN, Firewall and Bandwidth Manager (QOS), the amazing solution is right here.
Learn more about Internal and External threats
Special Feature of our unique UTM
Firewall
Firewall
- Stateful inspection
- Connection-tracking TCP/UDP/ICMP
- SPI and proxy combinable
- Time controlled firewall rules, content filter and internet connection
- IP-ranges, IP-groups
- Layer7-filter
- Port-ranges
- Self- and predefined ports
- Supported protocols: TCP, UDP, ICMP, GRE, ESP, AH
|
|
Gateway Antivirus
- HTTP, HTTPS, FTP, POP3, SMTP
- Scans compressed data and archives
- Scans ISO 9660-files
- Exceptions definable
- Manual and automatic updates
|
|
Gateway Antispam
- Online-scanner
- Scan-level adjustable
- Real-time-detection-center
- Black- / white-email-sender-lists
- Mail-filter
- Black- / white-email-recipients-lists
- Automatically reject emails
- Automatically delete emails
- AD-email-addresses import
|
|
Web-filter
- URL-filter
- Content-filter
- Block rules up to user-level
- Black-/ white-lists
- Im- / export of URL-lists
- File-extension blocking
- Category-based website-blocking
- Self definable categories
- Scan-technology with online-database
- Transparent HTTP-proxy support
- Intransparent HTTP-proxy support |
|
VPN
- VPN-wizard
- Certificate-wizard
IPSec
- Site-to-site
- Client-to-Site (Road warrior)
- Tunnel-Mode
- IKEv1, IKEv2
- PSK
- X.509-certificates
- 3DES, AES (128, 192, 256)
- Blowfish (128, 192, 256)
- DPD (Dead Peer Detection)
- NAT-T
- Compression
- PFS (Perfect Forward Secrecy)
- MD5, SHA1, SHA2 (256, 384, 512)
- Diffi Hellman group (1, 2, 5, 14, 15, 16,17,18)
- export to One-Click-Connection
- XAUTH, L2TP
|
|
SSL
- Site-to-site
- Client-to-Site (Road warrior)
- Routing-Mode-VPN
- Bridge-Mode-VPN
- X.509-certificates
- TCP/UDP port changeable
- Compression
- specify WINS- and DNS-servers
- 3DES, AES (128, 192, 256)
- CAST5, Blowfish
- Export to One-Click-Connection
|
|
PPTP
- Windows-PPTP compatible
- Specify WINS- and DNS-servers
- MSCHAPv2 |
|
X.509 certificates
- CRL
- OCSP
- Templates
- Multi CA support
- Multi host-cert. support
|
|
VPN-client
- IPSec-client
- SSL-client (OpenVPN)
- NAT-T
- AES (128, 192, 256), 3DES
- CAST, Blowfish
- X.509 certificates
- PSK
- One-Click-Connection
- Log-export
|
|
Proxies
- HTTP (transparent or intransparent)
- Support for Radius-server, AD-server, local user-database
- HTTPS, FTP,POP3,SMTP,SIP
- Integrated URL-/ content-filter
- Integrated antivirus-filter
- Integrated spam-filter
- Time-controlled
|
|
Management
Management
- eGUI technology
- ISO 9241 certified
- visual feedback immediately supplied for each setting
- self-explanatory functions
- overview of all active services
- overview of the whole network
- Layer and zoom function
- Languages: English, German, French, Italian
- Role-based firewall administration
- Role-based statistic-client
- SSH-CLI
- Desktop configuration saved / restored separately from backup
- CLI on serial line
- Object oriented firewall configuration |
|
User Authentication
- Active Directory supported
- Active Directory groups integration
- OpenLDAP supported
- Local userdatabase
- Web-interface authentication (port changeable)
- Windows-client authentication
- Authentication on domain login
- Single sign on with Kerberos
- Single- and multi login
- Login and logoff auditing
- User- and group statistics
|
|
LAN/WAN - Support
- Ethernet 10/100/1000/10000 Mbit/s
- Twisted-Pair / Fibre-Optics
- MTU changeable (Ethernet/DSL)
- PPPoE, PPTPoE
- ISDN
- PPP-PAP, PPP-CHAP authentication
- Inactivity timeout
- Forced disconnect time
- Cablemodem, xDSL
- Concurrent connections
- Backup-connections
- Connection availability check
- Loadbalancing
- Time controlled internet connections
- Manual and automatic DNS assignment
- Multiple dyn-DNS support
- Supports 8 different dyn-DNS-services
- Source based routing
- Routing protocols RIP, OSPF
|
|
High availability
- Active-passive HA
- Synchronisation on single / multiple dedicated links
- Manually switch roles
|
|
IDS/IPS
- Snort scan-engine
- 5000+ IDS-pattern
- Security-level adjustable
- Rule groups selectable
- Exceptions definable
- Email on IDS events
- DoS, DDoS, portscan protection
- Invalid network packet protection |
|
Backup
- Remote backup creation
- Small backup files (kb)
- Remote backup restore
- Restore backup on installation
- Automatic and time based creation of backups
- Automatic upload of backups on FTP- or SCP-Server
- Auto-install-USB-stick with backup integrated
|
|
Monitoring
- System-Info
- CPU- / memory usage
- Long-term-statistic
- HDD-status (partitions, usage, RAID)
- Network status (interfaces, routing, traffic, errors)
- Process-monitoring
- VPN-monitoring
- User-authentication-monitoring
|
|
Logging, reporting
- Email notification
- Logging to multiple syslog-servers
- Categorized messages
- Report in admin-client (with filter)
- Export report to CSV-files
|
|
SNMP
- SNMPv2c
- SNMP-traps
- Auditing of:
- CPU / Memory
- HDD / RAID
- Ethernet-interfaces
- Internet-connections
- VPN-tunnel
- Users
- Statistics, updates
- DHCP
- HA
|
|
Statistics
- IP and IP-group statistic
- Separate services
- Single user / groups
- TOP-lists (surfcontrol)
- IDS-statistics
- Traffic-statistics
- Antivirus- / antispam-statistics
- Defence statistics
- Export statistic to CSV-files
|
|
DHCP
- DHCP-relay
- DHCP-client
- DHCP-server (dynamic and fixed IP) |
|
DMZ
- Port forwarding
- PAT
- Dedicated DMZ-links
- DMZ-wizard
- Proxy supported (SMTP)
|
|
VLAN
- Port forwarding
- PAT
- Dedicated DMZ-links
- DMZ-wizard
- Proxy supported (SMTP)
|
|
Bridge-mode
- OSI-layer 2 firewall-function
- Spanning tree (bride-ID, port-cost)
- Unlimited bridges
- Unlimited interfaces per bridge
- Combinable with VPN-SSL |
|
Traffic shaping
- Up- and download shapeable
- Multiple internet connection separately shapeable
- All services separately shapeable
- Maximum and guaranteed bandwidth adjustable
- QoS with TOS-flags supported
- QoS inside VPN connection supported |
|
Commander center
- eGUI technology, ISO 9241 certified
- Monitor 500+ firewalls
- Active configuration of 500+ firewalls
- VPN connections centrally creatable
- Single- and group-backup
- Plan automatic backup in groups
- Single- and group update & licensing
- Create and apply templates on multiple firewalls
- Certificate based 4096 bit encrypted connections to the firewalls
- Display settings of all firewalls
- Role based command center user
|
|
Contact us now for you total Network protection.
|
