Views:

The following table describes Cloud Edge Cloud Console key features. Technology components are designed to integrate and optimize performance for gateway management through the cloud.

Table 1. Cloud Edge Cloud Console Features

Feature

Description

Gateway management

Centrally manage multiple Cloud Edge gateways through one cloud console.

Manage intranet security modes for Cloud Edge gateways with hardware switch chipset.

Manage wireless network access control and manage wireless client connections for Cloud Edge wireless gateways.

Use Cloud Edge Cloud Console to create and manage HA groups. You can create an HA group from two registered gateways to provide high availability access. If one gateway is down, then the other gateway will take over and ensure that the network traffic continues.

Multilayer Protection

Cloud Edge identifies when users and user groups access the network, which port they used, and what web-based applications were accessed to protect against network infiltration. Enforcing security policies based on these multiple layers of identification fight against emerging, sophisticated threats that may bypass traditional security solutions.

Policy management and deployment

Deploy policies across any number of managed gateways. Policy management options include:

  • Creating policies for specific gateways, interface groups, users/user groups, IP addresses, FQDNs, geolocations, services, application groups, URL category groups, schedules, and security profiles

  • Creating security profiles for advanced policy functionality including Intrusion Prevention System (IPS), anti-malware, email security, Web Reputation Service, HTTPS inspection, anti-denial-of-service, and endpoint identification

  • Approving or blocking URLs that override policy rules

  • Sending notifications when a policy event occurs

Plug–and–Play Deployment

Send the Cloud Edge gateway to customer locations without opening the package. Your customers can unpack the box and follow the instructions in the provided documentation. After the gateway is manually registered and is online, the gateway receives your custom security policy configuration.

Intelligent dashboard

View activity occurring within the network and spanning across one or more gateways. Widgets represent the core components of the dashboard and contain visual charts and graphs that allow you to track threats and associate them with accumulated log data.

Log analysis and reports

View and analyze aggregated log and event data about traffic bandwidth consumption, threat detections, Web 2.0 application usage, web browsing activity, and policy enforcement.

Save log query filters as log favorites to reference later or generate custom reports for further investigation.

View usage date for policy rules (only available if customer is running all Cloud Edge 6.0 or later gateways).

Quality of Service

Control bandwidth consumption to reduce network congestion by controlling communications, blocking unwanted traffic, and allocating critical traffic or services the appropriate bandwidth.

URL filtering

Configure URL filtering policies to deny or allow web domain access.

You can configure a policy to scan traffic for specific URL categories (for example, "Adult" and "Gambling") to filter traffic. When a user requests a URL, the gateway first looks up the category for that URL and then controls access based on policy settings.

Application control

Control more than 3400 application types running across any port, including applications using specific clients (Skype, BitTorrent, P2P) or Web 2.0 technologies within websites (social networking, web mail, streaming media).

Security profiles

Perform advanced policy configurations targeting security profiles.

  • Intrusion prevention

  • Malware protection

  • Email security protection

  • Web reputation

  • HTTPS inspection

  • Denial of Service attack prevention

  • Endpoint identification

User management

Synchronize user information across gateways.

User VPN

User Virtual Private Networking (VPN) extends VPN functionality to remote users, enabling users to securely communicate sensitive information to networks and servers over the IPv4 VPN tunnel, using dial-up (including broadband), LAN, and mobile connections.

Not available for Cloud Edge gateway models that do not support VPN.

Site–to–Site VPN

A Site–to–Site Virtual Private Network (VPN) allows offices in multiple fixed locations to establish secure IPv4 connections with each other over a public network such as the Internet.

Not available for Cloud Edge gateway models that do not support VPN.

Log Forwarding Service

The Log Forwarding Service is a licensable service that enables Cloud Edge Cloud Console to forward logs for licensed gateways to external applications. Managed Service Providers can assign the Log Forwarding Service service plan to a customer.

Gateway System Status and Events/Logs

For each gateway, you can view information about the gateway's system status. You can also view events/logs for network, system, and VPN events (if available), and for policy enforcement logs.

VPN events are not displayed for Cloud Edge gateway models that do not support VPN.

Gateway Troubleshooting Tools

You can use ping, traceroute, and ARP to troubleshoot gateway network IPv4 connectivity issues.

Integration with Worry Free Business Security Services

Cloud Edge WFBSS Endpoint Protection integrates with WFBSS to provide a compliance check for WFBSS endpoints who have an out-of-date WFBSS Security Agent pattern or who do not have the WFBSS Security Agent installed. Cloud Edge can provide network access control for out-of-compliance endpoints.

Network access control for suspicious endpoints

Cloud Edge provides security services by providing compliance checks for endpoints to see if C&C callbacks above the configured threshold have been detected. Cloud Edge can provide network access control for endpoints who have exceeded the threshold.