Virtual Next-Generation Firewall (NGFW) – UserGate, PT, or IDECO
UserGate NGFW delivers high-performance firewall protection without compromising network speed. It provides multi-layered security, enforces granular, user-aware policies, and ensures efficient use of your internet bandwidth.
For a performance boost of up to 70%, opt for the PT NGFW hardware appliances. For comprehensive perimeter defense, choose the integrated Ideco NGFW solution.
What Resources Can Be Protected by NGFW?
UserGate NGFW can be deployed in two primary scenarios:
- Dedicated Cloud Resource Protection
- Complete Local Network Traffic Protection
The Ideco NGFW, built on a Linux kernel, is an intelligent firewall with multi-layered antivirus and anti-spam scanning. This solution is an excellent fit for state and corporate IT environments.
To protect high-load networks from cyber threats, the NGFW from Positive Technologies — a Russian next-generation firewall — delivers the required performance and security.
Protecting Dedicated Cloud Resources with UserGate NGFW
Users access the information network via the external UserGate address. In this setup, UserGate NGFW maintains full control over cloud system traffic, inbound traffic from workstations, and outbound traffic from the servers themselves.
General user internet traffic is not controlled in this scenario.
UserGate NGFW: Complete Local Network Traffic Protection
This scenario protects the entire data flow of the local network. A VPN tunnel is configured between the cloud-based UserGate NGFW and the local network's exit router. All external connections are permitted only through UserGate. In this mode, full internet filtering, attack detection, and streaming antivirus functionality are active.
Core Functions of UserGate NGFW
Threat & Attack Protection
Protection from DoS attacks, including limiting the maximum number of connections per user or protected service. Defense against zero-day threats and prevention of user privacy violations from search engines, social networks, and other sources.
Ad blocking via an Adblock module that analyzes downloaded content based on known advertising networks and their scripts. This blocks ads loaded from third-party sites and pop-ups. UserGate NGFW can also block scripts designed to track user behavior online.
Virtual Private Network (VPN)
UserGate NGFW supports VPN for both remote device access and creating secure tunnels between servers. This approach unites distributed offices into a single logical network, significantly reducing and simplifying the application of uniform security policies across branches.
It enables secure access to corporate resources for employees in companies with a distributed structure.
Traffic Analysis & Inspection
UserGate NGFW performs morphological analysis of web page content for specific words and phrases. This enables control over access to particular sections of a website without completely blocking the entire resource at the category or domain level.
Internet Filtering
Implementing internet filtering significantly increases local network security. It provides administrative control over internet use and downloads, blocks access to potentially dangerous resources, and, when necessary, websites unrelated to work.
Email Security
Email scanning is crucial for both spam filtering and protection against infected emails, phishing, pharming, and other fraud types. UserGate NGFW filters emails based on content analysis and heuristics.
The analysis covers emails in any language, as well as graphical messages.
Data Center Security
The Intrusion Prevention System (IPS) responds to attacks that exploit known vulnerabilities and identifies malicious activity within the network.
The IPS monitors and blocks attacks in real-time. Preventive measures can include blocking specific network traffic segments, terminating connections, and alerting the administrator.
Threat Analysis
UserGate NGFW technologies align with the modern SOAR (Security Orchestration, Automation, and Response) concept. They analyze process behavior, identify risks, and automatically trigger appropriate responses. Administrators can define scenarios and automated actions for specific events, reducing time between threat detection and response, and prioritize events to ensure timely reactions to critical attacks.
Clustering & High Availability
The High Availability function of UserGate NGFW drastically reduces risks associated with hardware failures. This feature allows the system to be installed on a group of nodes, automatically switching the load between them in case of a failure. Clustering enables applying uniform settings, policies, libraries, certificates, authorization servers, user groups, etc., across different nodes.
Examples of UserGate NGFW Use Cases
- FSTEC-Certified Firewall
- Intrusion Detection System (IDS)
- DoS & Network Flood Protection
- Traffic Management & Internet Access Control
- Statistics & Automated Incident Response (LogAnalyser)
- Content Filtering & Application Control
- Load Balancing
- VPN Server
- Gateway Antivirus
FSTEC & FSB Certifications
The UserGate NGFW solution is listed in the Russian Software Registry and is certified by FSTEC of Russia. It complies with the requirements of key documents, including Trust Requirements, Firewall Requirements, and Protection Profiles for Firewalls (Class A4, B4, D4) and Intrusion Detection Systems (Network Class 4). The Ideco NGFW has also passed FSTEC of Russia certification.
FAQ
