entensys.com - Internet security software, gateway protection, web filtering, parental control, email security and network DLP
Select language
Search
Client login
Security news
10.31 2011
October 2011 - Internet Threats Trend Report
01.18 2011
Cybercriminals Are Back from the Holidays
01.12 2011
Complex Internet Security
UserGate applies a multidimensional approach to Internet security. It features not only the most advanced methods to combat all known internet-based threats, such as viruses, malware, and hacker intrusions, but also includes several tools to build a secure network infrastructure.
Internet security features include:
- Dual-antivirus protection
- Advanced firewall
- Advanced NAT driver
- Intrusion Detection and Prevention System
- A full-fledged VPN server
Dual-antivirus protection
It is vitally important to ensure that the local network is protected against different forms of malware spreading across the Internet, such as viruses, various Internet worms, and Trojan horses. Overlooking or underestimating the threat of malware can have dire consequences for any business.
“Which antivirus application?” – is a frequently asked question at security web-forums. To meet the needs of our customers, we have partnered with two of the most technologically advanced antivirus vendors – Kaspersky and Panda. Choose the one you trust more, or, for extra protection, utilize both; their virus definitions effectively supplement each other, making sure no threat remains undetected. For added security, you can choose a third antivirus vendor for use on employee workstations.
Advanced firewall
Advanced Firewall enables an administrator to protect the local network against hacker attacks while securely providing important service features like port mapping, forwarding, or opening a DMZ.
Advanced NAT driver
The brand new UserGate 5 features a new and broadened version of the NAT driver. Routing mode now allows system administrators to create several local subnetworks, and manage relations among them. For seamless communication, the new version supports SIP telephony protocols and network resource publication.
Intrusion Detection and Prevention System (IDPS)
IDPS (Intrusion Detection and Prevention System) is a network malicious activity monitoring solution. The primary purpose of IDPS is the detection of potentially dangerous activities, logging, threat prevention and reporting.
Detection of security breaches is usually performed with the help of heuristic rules and analysis of signatures of known attacks. Breach details are logged and a corresponding notification is sent to the console and/or system administrator via a specific communication channel. IDPS takes counter-measures against the breach by dropping the connection or reconfiguring the firewall for blocking incoming malicious traffic.
IDPS tracks activities in real time and quickly blocks attacks. Possible preventive measures include blocking of particular segments of network traffic, disconnection and notification of the network administrator.
A full-fledged VPN server
VPN (Virtual Private Network) is a method of setting up remote secure access to database, email and FTP servers over standard Internet channels. VPN technology is capable of protecting the traffic of any intranet and extranet systems, audio- and video-conferences and e-commerce solutions.
The system features a full-fledged VPN server supporting the creation of a "server-to-server" tunnel, inter-network routing and support of current VPN connections. Configuration of the VPN server is limited to setting a few parameters:
- Interface to be used by the VPN sever to accept inbound connections;
- IP address of the VPN server;
- Range of IP addresses of the virtual network that can be assigned to VPN clients;
- And other parameters.
Initially, the IP address of the VPN server is viewed by UserGate as a regular local (LAN) interface, so this interface can be used either for routing rules between a local network and a VPN network or for creating NAT rules between a VPN network and the Internet.
