O Sophos XG Firewall traz uma nova abordagem na forma de gerenciar o seu firewall, responder às ameaças e monitorar o que acontece na sua rede. Prepare-se para um novo nível de simplicidade, segurança e percepção.

1. 1
Edward Dalbem Lüderitz
Sales Development Representative
Sophos XG Firewall
The Next Thing in Next-Gen

2. 2
Introducing Sophos XG Firewall

3. 3
IT Manager Survey on SpiceWorks
Top Complaints About Current Firewalls
Profit
Poor performance
Poor value
Not easy to manage
Insufficient security & control
Insufficient reporting & visibility

4. 4
Introducing Sophos XG Firewall
A revolution in firewalls:
✓ Simple to use
✓ Lightning fast
✓ Unparalleled protection
✓ On-box reporting
✓ From a trusted industry leader

5. 5
Introducing Tool Features

6. 6
Management
MANAGEMENT Firewall
Management
Centralized
Management
Status & Alerts
Reporting &
Logging
What’s Key
All-new Control Center and user interface
Sophos Firewall Manager
iView reporting
Key Management Features
• All-new Control Center for immediate insights into issues
• Unified policy model with all policies on a single screen
• Policy templates for quick business app protection.
• Role-based Admin granular access control
• Centralized Management via Sophos Firewall Manager
• Centralized Consolidated Reporting with Sophos iView
• On-box Reporting on every appliance
• PSA/RMM XML-based API

7. 7
User & App Control
What’s Key
Unified policy model
Patented Layer-8 User Identity
Full user-based app control
User Threat Quotient
Key User and App Control Features
• Unified Policy Model to manage all policies on a single screen
• Layer-8 User Identity patented technology for user-based firewall rules & visibility
• Flexible Authentication including directory services, client agents, and portal
• User based firewall policies any firewall rule can be user-based
• Per-policy app, web, QoS, and IPS control for ultimate ease and flexibility
• Customizable templates for apps, web, IPS and traffic shaping
• User Threat Quotient to identify risky users.
• Broad enforcement including HTTPS, Anonymizing proxies, and SafeSearch
• Web caching reducing bandwidth consumption – including Endpoint updates
USER & APP CONTROL User Identity Application Control Web Control Content Control

8. 8
Network Protection
What’s Key
Next-Gen IPS
FastPath packet optimization
Security Heartbeat
Pharming protection
Key Network Protection Features
• Stateful firewall with deep packet inspection with zone based policies
• Perimeter defenses against DoS, reconaissance, spoofing, flood, and ICMP attacks
• Next-Gen IPS (NGIPS) protection from hacks and attacks that’s user and app aware
• FastPath packet optimization that provides up to 200% performance improvement
• Advanced protection from the latest viruses and web threats
• Security Heartbeat that links endpoints with the firewall
• Advanced Threat Protection from bot-nets and C&C traffic
• Pharming Protection to protect from overwritten hosts files (DNS lookups)
• Web Application Firewall for business applications like Exchange & SharePoint
• SSL decryption and inspection and certificate validation
NETWORK PROTECTION
Synchronized
Security
Advanced Threat
Protection
Business
Applications
Encrypted Traffic
Firewall IPS Anti-malware Web Protection

9. 9
Email Protection
What’s Key
IMAP Filtering
What’s Unique
SPX Email Encryption
DLP Policies
with pre-packaged sensitive data types
Key Email Protection Features
• Anti-spam Protection from the latest spam campaigns
• New IMAP filtering for email services using this protocol
• SPX Email Encryption for simple push encryption without trust infrastructure
• DLP Policies with pre-packaged sensitive data types
• Self-help Quarantine Management through the user portal
EMAIL PROTECTION Anti-spam Email Encryption
Data Loss
Prevention
Quarantine
Management

10. 10
Networking
What’s Key
Discover Mode
Zone Segmentation
Traffic Shaping per-policy
Key Networking Features
• Routing and Bridging supporting all the latest standards
• Zone segmentation with isolation/policy support for LAN, WAN, VPN, DMZ, etc.
• Discover Mode in bridge or TAP mode for easy PoCs and evaluations
• Traffic Shaping per-policy offering greater flexibility in prioritizing traffic
• Integrated Wireless Controller with plug-and-play Sophos WiFi Aps
• Wireless Hotspots with flexible authentication options
• High performance switching, scanning, and proxy engines
• Standard VPN Options including IPSec, SSL, PPTP, L2TP, Cisco, OpenVPN
• Clientless VPN for easy access to hosts or services via the user portal
• RED VPN for easy and secure networking to remote locations
• IPv6 support for future-proofing and deployment into IPv6 environments
NETWORKING
Routing & Bridging Zone Segmentation Traffic Shaping Wireless Controller
Performance VPN RED VPN iPv6

11. 11
Simple to Use

12. 12
XG Firewall: Simply Solving Common Problems
Difficult to mine data to
identify and prioritize issues
Interactive dashboard
instant data and drilldown
Firewalls full of jargon
and difficult to navigate
Complexity of policy creation
and management
Policy templates,
easy to understand
Self-documenting
interface and menus
Identifying risks
User Threat Quotient and
App Risk monitoring

13. 13
All-new Control Center
•Surfaces important
information
• System status
• Traffic
• Security heartbeat
• Advanced threats
• UTQ
• VPNs
• Risky users, apps,
websites
• Policy activity
•Quick access to additional
information and tools

14. 14
3-Clicks to Anywhere
Navigation
•Never more than 3-clicks
to anywhere
•Nav remembers your last
selected item
•Description identifies what
each menu items provides to
make discovery easy
•Main Nav Menu
• Control Center
• Reporting
• Policies
• Protection
• System
• Objects

15. 15
Unified Policy
Management
•Don’t need to navigate
multiple modules, or tabs to
find polices
•All policies on one screen
•Users & Networking
•Business Applications
•Sort and Filter by
•Rule type
•Source Zone
•Destination Zone
•Status

16. 16
Integrated Policies
•Everything on one screen
•Layer-8 User Identity
Polices
•Zone based policies
•Web and App Control per
policy
•IPS and Traffic Flow per
Policy
•Security Heartbeat Policy
•Limit access for Red
or Yellow Heartbeats

17. 17
Business App Policy
Templates
•Templates simplify WAF protection
for common business applications
•Exchange
•Sharepoint
•Lync
•And Much More
•Templates can be customized
•Templates can be shared

18. 18
SFM Dashboard – At-a-Glance Management
2
Top panel
3
Device overview
4Device Monitor
6
Model information
7System messages
5
System information about SFM
1 Menu for key work areasLet’s take a look…

19. 19
Management Made Simple: Three Work Areas
Device
Configuration
• Manage config. or
policies
• For individual device
or group of devices
Template
Configuration
• Create and apply
reusable config.
templates
• Quickly set up new
branch offices /
customer sites
System
Management
• Device health and
settings (add device/
group, update
firmware, etc.)
• Change control
• Monitoring

20. 20
Lightning Fast

21. 21
• FastPath optimizes firewall connectivity and routing
• Once connection is deemed trusted, all related packets take the fast path
• It is NOT Stream scanning – which lightly scans packets as they pass for malware
• We properly scan all content in real-time or batch mode – we do not stream scan
Policy Engine
(Who are you? Where are you going?)
Malware Engine
(Are you carrying anything dangerous?)
FastPath Packet Optimization
(e.g. for approved traffic “travelling together”)
Stream scanning
(e.g. visual inspection only)
FastPath Packet Optimization

22. 22
Unparalleled Protection

23. 23
• Single-pane overview
• Unified policies
• Security Heartbeat
Essential
Firewall
• Find threats faster
• Simplify investigation
• Minimize threat impact
Security Heartbeat
Modular Security features
Network
Protection
• Intrusion Prevention (IPS)
• Client & Site-to-Site VPN
• Quality of Service (QoS)
• Advanced Threat Prot. (ATP)
• Wireless Controller for
Access Points
• Multi-Zone (SSID)
support
• Hotspot Support
Wireless
Protection
• Anti Spam & Phishing
• Dual Virus Protection
• DLP & Encryption
Mail
Protection• Reverse Proxy
• Web Application Firewall
• Antivirus
Web Server
Protection
• URL Filtering Policies
• Web Threat Protection
• Application Control
Web
Protection

24. 24
Generations Of Security
Point Products
Anti-virus
IPS
Firewall
Sandbox
Layers
Bundles
Suites
UTM
EMM
Synchronized Security
Security Heartbeat™

25. 25
Security Heartbeat™
Network and Endpoint working better together to revolutionize advanced threat protection
Endpoints
XG Firewall
Server
Internet
No Security
issues
Unwanted
Application
Compromised
Infected
Automatically isolate
systems with
Red Heartbeat
Set more restrictive
policies for systems with
Yellow Heartbeat
1. ATP detects and blocks suspect C&C connection
2. Context requested from Endpoint
3. Full information exchanged (user, process, etc.)
4. Admin notified about ATP event including context
Heartbeat in Network Policies
Advanced Threat Protection
Suspect
Endpoint
XG Firewall
•Accelerated Discovery
Endpoint and network protection
combine to identify unknown
threats faster.
•Active Identification
Reduces time taken to identify
infected or at risk device or host
by IP address alone.
•Automated Response
Compromised endpoints can be
automatically isolated or
restricted by firewall policies
based on Heartbeat™ status.

26. 26
Security Heartbeat
& Advanced Threats
•Accelerated discovery
•Positive identification
•Automated response
•Instant insights into
compromised systems
• Hostname, IP
• User
• Time period
• Threat
• App/Process
• Incidents/Count

27. 27
On-box Reporting

28. 28
App Risk Meter
• Identifies overall risk level
• Application dashboard
identifies risky apps
and who’s using them

29. 29
User Threat Quotient
•Identify risky users
before
they become a problem
•UTQ based on recent
web history and ATP
triggers
• Enables:
•Quick and easy policy
changes
•User education
•Targeted intervention

30. 30
Centralized Reporting
Sophos iView Reporting

31. 31
From a Trusted Industry Leader

32. 32
Gartner Magic Quadrant
UNIFIED THREAT MANAGEMENT
Gartner Magic Quadrant
ENDPOINT PROTECTION
Only Vendor That Is a Gartner Leader in EP and UTM
Challengers Leaders
Niche players Visionaries
Completeness of vision
Abilitytoexecute
Source: Gartner (December 2014)
Microsoft
Eset
IBM Webroot
F-Secure
Bitdefender
Symantec
Kaspersky
Trend Micro
Panda Security
McAfee
Check Point
Lumension
Qihoo 360
ThreatTrack
Security
Landesk
Stormshield
Challengers Leaders
Niche players Visionaries
Completeness of vision
Abilitytoexecute
Source: Gartner (August 2015)
Cisco
Juniper Networks
Huawei
Check Point
Rohde & Schwarz
(gateprotect)
Fortinet
Dell
WatchGuard
Stormshield
Barracuda
Hillstone
Networks
Aker
Security
Solutions

33. 33
Unique Balance Between Endpoint and Network

34. 34
Summary

35. 35
To Sum Up…
XG Firewall:
✓ Simple to use - easy to navigate
✓ Lightning fast - with FastPath packet optimization
✓ Unparalleled protection - featuring the industry first Security Heartbeat
✓ On-box reporting - over 300 reports included as standard
✓ Trusted industry leader - Gartner Leaders Quadrant for Endpoint and UTM

36. 36
Competitive Chart Sophos
XG Firewall
Fortinet
FG 20-90
Dell SonicWALL
TZ Series
WatchGuard
XTM Series
Network Firewall/Protection
Advanced threat protection
Network and Endpoint Integration [Heartbeat]
Unified Policies
User Risk Visibility [User Threat Quotient]
FastPath Packet Optimization
Site to site and remote user VPN
Secure web gateway
Complete Email Protection [AV, AS, Enc., DLP]
Dual antivirus
Wi-Fi
Reverse proxy
Web application firewall
User portal
Full Reporting
Best TMG feature parity
Discover (TAP) Mode Deployment
$ $
$ $ $
$ $ $
$ = Another product required
New Differentiators
•New competitive differentiators
•Heartbeat
•Unified policy
•User Threat Quotient
•New comparative differentiators
•FastPath
•Discover Mode
•User-based Firewall Policies