PacketViper, LLC, Improving Security With Geo-IP Filtering

1,131
-1

Published on

Francesco Trama, CEO of PacketViper, LLC presentation on the importance of adding an additional Geo-IP network filtering layer to your security environment. Properly Geo-IP filtering will alleviate the pressure through the security environment, there-by improving security performance, analysis, and reduce threats to exposed network ports. PacketViper is a bi-directional Point and Click Intelligent Geo IP Network Filter. PacketViper saw a gap in todays security environments and invented a new layer which scrubs out network traffic before it enters the security environment. Geo-IP Network filtering is a network security tool that allows or denies network traffic based on geographical location by network port. Sometimes referred to as country filtering or blocking, Geo-IP port filtering allows your network to choose places in the world from which it will accept or deny network traffic. More importantly, innovative designs in Geo-IP Filtering enable new and unparalleled levels of precision that allow businesses to avoid dangerous areas without excluding potentially valuable customers or business.

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
1,131
On Slideshare
0
From Embeds
0
Number of Embeds
1
Actions
Shares
0
Downloads
6
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

PacketViper, LLC, Improving Security With Geo-IP Filtering

  1. 1. Reducing The “NETWORK SECURITY FOG” PRACTICAL GEO-IP FILTERING Francesco Trama, CEO and Co-Founder
  2. 2. MY FIREWALL CAN DO THIS!
  3. 3. True: Todays Firewalls have some form of Geo-IP blocking. Some can turn off a country. False: They are not capable of reaching PacketViper per-port bi-directional country or multi-national company filtering, IP Detail, actionable logging, net-check, triggering, and alerting.
  4. 4. A PROXY CONNECTION CAN DEFEAT GEO-IP
  5. 5. True: No network security device can effectively manage a proxy connection. Also True: With PacketViper inline, proxy connections can be combatted more effectively, because the attacker has less options to proxy through. Geo- IP filter limits their movements and funnels into well lighted security areas.
  6. 6. WE ARE A GLOBAL COMPANY, AND CAN’T BLOCK A COUNTRY
  7. 7. FIREWALL POP SMTP WEB SSH FTP VPN TELNET Country 1 Country 2 Country 3 Country 4 TRUE: TURNING A COUNTRY OFF CAN CAUSE MORE PROBLEMS WITH REGULAR FIREWALLS
  8. 8. FIREWALL POP SMTP WEB SSH FTP VPN TELNET Country 1 Country 2 Country 3 Country 4 TRUE: MAY PREVENT LEGITIMATE COMPANIES
  9. 9. NOW PACKETVIPER
  10. 10. FIREWALL POP SMTP WEB SSH FTP VPN Out ALSO TRUE: PACKETVIPER CAN FILTER THE COUNTRY, PORT, AND COMPANY Per-Port Geo IP Filter Country 1 Country Blocked Companies Allowed
  11. 11. DIFFERENCE IN GEO-IP BLOCKING vs. FILTERING Filtering: An ability to restrict countries and their businesses to specific areas on your network, while disallowing them to other areas. Block: To Turn the country on and off (What Everyone Else Does)
  12. 12. BEFORE PACKETVIPER
  13. 13. FIREWALL POP SMTP WEB SSH FTP VPN TELNET Listeners/Services World
  14. 14. AFTER PACKETVIPER
  15. 15. FIREWALL POP SMTP WEB SSH FTP VPN TELNET Country 1 Country 2 Country 3 Country 4 Per-Port Geo IP Filter PACKETVIPER FILTERED
  16. 16. PACKETVIPER FILTERED FIREWALL POP SMTP WEB SSH FTP VPN TELNET Per-Port Geo IP Filter
  17. 17. WHAT ELSE DOES PACKETVIPER DO?
  18. 18. 8.8.8.8 Enter any IP into our NetCheck To get instantaneous and actionable IP details.
  19. 19. Actionable real time Logs. Click any log entry and see the complete IP details, filter countries, subnets, and IP instantly.
  20. 20. Actionable graphs, which can be clicked through to our actionable reports filter. From the reports filter any log entry can be selected to filter and gain more insight.
  21. 21. Actionable connection manager to quickly view and filter IP’s, networks, and countries.
  22. 22. Quick country filtering, by selecting any country on a map, then choosing which ports to allow or deny..
  23. 23. Alert and Triggering which can be based on country, protocol, ports, company, or a group of countries. Triggers set to email, auto block, slow, or log violating events.
  24. 24. Global Network Lists is a collection of multi national companies and high risk areas around the world.
  25. 25. WHAT’S THE FOG OF NETWORK SECURITY? Excessive event logging which hampers, and jades effective security analysis on a daily, weekly, monthly basis
  26. 26. HOW WE IMPROVE Reduce Gateway Chaos By Only Allowing What Is Necessary
  27. 27. PLACE BORDERS ON YOUR EXPOSURES We reduce the traffic entering each network exposure
  28. 28. LIMIT ATTACKER MOVEMENT Forcing attackers through kill holes/choke points. These areas are Scrutinized with higher IDS.
  29. 29. HOW IS PACKETVIPER IMPLENTED? Internet FW Gateway INLINE
  30. 30. LESSEN THE CHAOS, RESULTS IN Less Inspection Less False Positive's Less Logging Less Log Jading Better Threat Detection Better Security Happier Security Teams
  31. 31. Thank You PACKETVIPER: NETWORK SECURITY STARTS WITH US! Visit Our Demo At http://pvdemo.packetviper.com:47880 Login: pvguest Password: packetviper
  1. A particular slide catching your eye?

    Clipping is a handy way to collect important slides you want to go back to later.

×