Multilayered Defense Against Cybersecurity Threats
Installing the VF50 is incredibly easy for anyone with at least some IT experience. It works with most cloud providers and can also be installed on-premises on any workstation or server with at least 2GB of RAM and about 60GB of free hard drive space. Agencies can use a maximum of two CPU cores to drive it, which would provide a good deal of throughput and simultaneous operations before requiring an upgrade to a VF100 or higher-performing virtual firewall.
The VF50 provides all of the typical protection that users have come to expect from a firewall, plus quite a few advanced protections that form a layered defense to ensure that nearly every threat gets caught. The first level of protection consists of a firewall IPS and rule-based blocking, application control, dynamic routing, signature-based protection blocking and web filtering. More advanced protections include static code inspection, SSL interception, behavior analysis and detailed reporting with firewall analytics.
Sandboxing Threats Eliminated with Ease
At the very high end of its on-board protections, the VF50 will put suspicious files or code into a sandbox that detonates any attachment that is not fully identified by the previous layers. Should a threat get detected in the sandbox, that threat is stopped and the VF50 learns the specific characteristics of the attack so that future threats of the same nature can be blocked. That saves resources and prevents shotgun-type attacks from overloading the firewall or bogging down operations.
In my testing, the VF50 was able to stop all of the polymorphic threats tossed at it from my in-house malware zoo, as well as several which were crafted on the fly with stealth and other obfuscation techniques. The VF50 even was able to stop so-called zero-day attacks using its defense in depth. Only a couple of threats made it all the way to the sandbox, and none got past the firewall completely.