Transcript UTM
ShareTech
Next-Gen UTM
UR Series
ShareTech Next-Gen UTM
Common network intrusion methods
Hacking
Prevention
Network
Query
Identity
Intrusion
Prevention
QoS
Encrypted
Connection
Security
Audit
Layer 7 APP
Control
Virus Filters
Intrusion,
Sniffer, illegal
connection
DHCP
MAC, IP
Layer 2, ICMP,
TCP
UDP Anomaly
VoIP
P2P
SSL VPN
SOX
HIPPA
IM
P2P
URL
SMTP/POP3
Http
FTP
Gateway
Security
Network
Auth.
Auditing
ShareTech Information Co., Ltd.
Here comes your footer
Page 2
ShareTech Next-Gen UTM
Competitive Advantages for SMB
Before
Now
Anti-Spam
Anti-Virus
Load
Balance
QoS
ShareTech Information Co., Ltd.
Here comes your footer
Page 3
ShareTech Next-Gen UTM
Solve Your Network Problems
ShareTech Information Co., Ltd.
Here comes your footer
Page 4
About ShareTech Information Co., Ltd.
Company Profile
Present Stage
More than 50% employees is RD
Developing Stage
Mail Server
OEM
UTM/ Wireless UTM
Mail Server in 2004
Early Stage First hardware-based
WF Solution (+AP)
Software Development
Small Device Agent
Firewall Flow Analysis, Watchlan…
(Modem/IP Router)
System integration
Founded
In 1999
1999-2000
ShareTech Information Co., Ltd.
2000-2010
2014-
Here comes your footer
Page 5
Becoming Our Agent
What you need to know before getting starteded
Our Vision
ShareTech Next-Gen UTM Four Major Features
ShareTech Next-Gen UTM Product Series and Spec
Service and Support
Success Stories
ShareTech Information Co., Ltd.
Here comes your footer
Page 6
Becoming Our Agent
Our Vision - Becoming a leading Network Security Brand
Target Markets
Strategy
Internal Co-Defense
Integrated with Switch
Complete Online
Behavior Record
Sound Management
Cloud CMS
AP Management
Online behavior, APP,
QoS control
Make sure each spot
functioned well
Secure wired & wireless
network
ShareTech Information Co., Ltd.
Here comes your footer
Page 7
ShareTech Next-Gen UTM
Four Major Features
Security Protection
Internal Control
Anti-Virus, Anti-Spyware, AntiPhishing, Anti-DoS, Anti-Hacking and
Anti-Relay
IDP & Botnet
Co-Defense
Policy Control (QoS/VPN/Auth.)
Filter APP
Content Filter
Mail Audit
Network Load Balancing
Easy Management
Record-based Monitoring
Incoming/Outgoing mail record
IM record
FTP download record
Encrypted SKEYP & QQ record
Event log
ShareTech Information Co., Ltd.
Webpage Management
CMS
AP Control
Bulletin Board
Flow Reports
Here comes your footer
Page 8
ShareTech Next-Gen UTM
Security Protection - IPv4/v6 Dual Stack
ShareTech Next-Gen UTM IPv6 Certification
Some parts of the world have already exhausted their IPv4 allocations.
ShareTech UTM supports IPv4-only, IPv6-only, and dual-stack for each host.
UR Series have been certificated with “IPv6 Ready” logo by the IPv6 forum.
ShareTech Information Co., Ltd.
Here comes your footer
Page 9
ShareTech Next-Gen UTM
Security Protection - Anti-Virus
ShareTech Next-Gen UTM firewall provides advanced threat protection such
as anti-virus gateway and anti-spam gateway. With network security in place,
Web and email pass through multiple threat detection engines. Security
problems can be detected in real time.
Automatic Anti-Virus Signature Update: email viruses spread quickly
through the network. ShareTech uses Clam AV that can be efficient in
providing real-time protection to eliminates viruses, spyware, and other
malware.
Viruses embedded within incoming and outgoing mail,
www., and FTP will be discovered and blocked by virus scanning.
ShareTech Information Co., Ltd.
Here comes your footer
Page 10
ShareTech Next-Gen UTM
Security Protection - IDP (Instrusion Detection Prevention)
Signatures :
Default (2243), Custom
IDP Policies:
Multiple, Custom
Deep Packet Inspection:
inspect the packets from
OSI layer 4 - 7 (app layer)
Protocol Anomaly Detection
Risk management:
3 levels (High, Medium, Low)
ShareTech Information Co., Ltd.
Here comes your footer
Page 11
ShareTech Next-Gen UTM
Security Protection - BotNet
“BotNet” (known as Zombie Network). A bot can be left for future activation,
typically runs hidden and uses IRC to communicate with its Command and
Control (C&C) server.
When a command is released from the
"controller", your computer performs
automated tasks over the Internet.
Being a vulnerable server, it will send
spam distribution to many computers.
ShareTech UTM integrated with
BotNet with in-built NAT which can
explicitly point out the real attack
running
hidden
and
suspense
malicious software spreading in the
internal network.
ShareTech Information Co., Ltd.
Here comes your footer
Page 12
ShareTech Next-Gen UTM
Security Protection - Anomaly Flow Analysis
Network Anomaly Detection
ARP Spoofing Detection
Prevent the spread of known worm
Auto Prevention
Session Log
Access Control - Quarantine, QoS, Rate limit, IP/MAC
ShareTech Information Co., Ltd.
Here comes your footer
Page 13
ShareTech Next-Gen UTM
Security Protection - ARP Spoofing Protection
ARP Spoofing is to send fake ARP messages to LAN. Its aim is to associate the
attacker's MAC address with the IP address and leads to network connection
failure.
The first feature of ARP spoofing is data intercepted by the gateway. All the
data can only be sent to the wrong MAC address, resulting in a normal PC not
receiving the message. And the second is establishing forged gateway, so it is a
cheating gateway issued false data to the PC, rather than going through the
normal means of access routers.
ShareTech UTM uses scheduled MAC addresses update technique to avoid
changing MAC to IP address entries by ARP attackers.
ShareTech Information Co., Ltd.
Here comes your footer
Page 14
ShareTech Next-Gen UTM
Security Protection - Co-Defense
Cooperated with an SNMP managed
switch,
administrators can find out
problematic devices via the UTM
management interface, and control the
devices (allow or block) instantly.
ShareTech Information Co., Ltd.
Here comes your footer
Page 15
ShareTech Next-Gen UTM
Security Protection - High Avaibility (HA)
ShareTech UTM provides high availability solution that provides highly
available services at all times. Master system normally has priority for serving
as a gateway. Master and Slave systems get connected and keep the data
synchronized.
HA offers continuous access to
business-critical applications,
information, and services.
Supported in UTM Series
ShareTech Information Co., Ltd.
Here comes your footer
Page 16
ShareTech Next-Gen UTM
Internal Control - QoS
Smart QoS provides different priorities between individual users and
applications.
ShareTech UTM provides QoS-guaranteed wired network. Personal bandwidth
setting can be made for personal requirements. QoS can be applied together
with personal QoS, and then bandwidth reservation can be made.
It reserves remaining bandwidth automatically and dynamically
allocates between users in real time.
ShareTech Information Co., Ltd.
Here comes your footer
Page 17
ShareTech Next-Gen UTM
Internal Control - Failover Backup (Load Balance)
Outbound Load Balance
Auto distribution
Manual distribution
Distributed based on source
Distributed based on destination IP
ShareTech Information Co., Ltd.
Inbound Load Balance
Analysis of distributed DNS
Analysis of host connections
Here comes your footer
Page 18
ShareTech Next-Gen UTM
Internal Control - APP Control
In-built various APP access control techniques
Easy-to-manage network security
Monitor employee wireless network usage
ShareTech Information Co., Ltd.
Here comes your footer
Page 19
ShareTech Next-Gen UTM
Internal Control - Web Filtering
Web Filtering blocks access to sites which contains violence, adult material
and unauthorized websites which contains hackers and virus. Administrators
can define a set of policies to reduce exposure to legal liability.
ShareTech Information Co., Ltd.
Here comes your footer
Page 20
ShareTech Next-Gen UTM
Internal Control - URL Database
Built-in “Cloud URL Database” which
automatically categorized webpages,
administrators can easily block the
vicious URL websites by clicking on
the target categories instead of
entering website IP address and
keywords one by one.
The database collects almost 1, 000,
000 URLs and updates every period
of time without additional charge.
All these URLs and their contents
were analyzed and classified into 12
categories.
ShareTech Information Co., Ltd.
Here comes your footer
Page 21
ShareTech Next-Gen UTM
Internal Control - Authentication
Built-in integrated authentication mechanisms such as Local AD/POP3/Radius
Servers are provided to authenticate users. Administrators monitor all user
accounts in the internal network which reduces cost and increases business
efficiency.
Only users with valid account
and password are allowed to
enter the internal network.
ShareTech Information Co., Ltd.
Here comes your footer
Page 22
ShareTech Next-Gen UTM
Internal Control - IPSec VPN
Built-in IPsec VPN secures the site-to-site connections. After passing
authentication, more than two devices are allowed to access the same
network and transmit encrypted data over the virtual private network.
Configuration for the LAN-to-LAN
IPsec tunnel
GRE over IPSec tunnels supported
VPN tunnels can be established
after tunnel users (endpoints) are
authenticated using valid account
name and password.
Other VPN devices supported
ShareTech Information Co., Ltd.
Here comes your footer
Page 23
ShareTech Next-Gen UTM
Internal Control - PPTP Server/Client VPN
PPTP VPN offers point to point connection for employee at home. PPTP
creates a TCP control connection between the VPN client and VPN server to
establish a tunnel which enables employee get access to industry’s network
securely and easily.
Configuration for VPN PPTP Server/Client tunnel
Options at Client side:
-Using ShareTech VPN Broadband Router
-Windows/UNIX/Linux PPTP Client software
Other VPN devices supported
ShareTech Information Co., Ltd.
Here comes your footer
Mal Server
Page 24
Web Server
ShareTech Next-Gen UTM
Internal Control - SSL VPN
SSL VPN provides extensive network access control methods. Remote users
are requested to established security policies based on the 2 directions.
- entering internal network
- entering VPN Server network.
Using web browsers (IE, Firefox,
Opera) and open webpage, enter
company IP at the address bar.
Enter connection information
(SSL VPN username and password).
ShareTech Information Co., Ltd.
Here comes your footer
Page 25
ShareTech Next-Gen UTM
Record-Based Monitoring - Spam Filtering
ShareTech UTM employs multiple spam mechanisms: ST-IP network rating,
Fingerprinting, Bayesian Filtering, Auto learning, Auto-whitelist, system and
personal Blacklist/Whitelist and Spam characteristics filtering.
Personal blacklist/whitelist and auto-learning can be activated in more flexible
policies for high accuracy spam filtering.
ShareTech Information Co., Ltd.
Here comes your footer
Page 26
ShareTech Next-Gen UTM
Record-Based Monitoring - Mail Auditing
Default Conditions
• Combined
Conditions
• Sender/Receiver
• Sender source IP
3. Detection
•
•
•
•
•
Instant Action
Mail title
Mail subject
Mail content
Mail capacity
Attachments
•
•
•
•
Quarantine
Delete
Block IP
Send copy
• Notification
• Adjust Spam Scores
• Disable Spam Filter
4. Actions Taken
Filter
Policies
Policy
Engine
5. Good Mail
2. Outbound Email
Company & Mail Record Rules
•
•
•
•
Intellectual Property Rights
Responsibility Laws
Invasive Data
Sensitive Data
Legitimacy of Control
• HIPAA (Health Insurance Portability
and Accountability )
• SoX (Sarbanes-Oxley)
• Private Information Protection Law
1. Rules and Legitimacy
ShareTech Information Co., Ltd.
Here comes your footer
Page 27
ShareTech Next-Gen UTM
Record-Based Monitoring - Online Behavior Tracking
Record files transfer over WEB, Mail
(POP3 and SMTP), FTP, chat history over
instant messaging (Yahoo, ICQ, IRC,
Gadu, Jabber), and chat history and files
transfer over encrypted Skype and QQ.
ShareTech Information Co., Ltd.
Here comes your footer
Page 28
ShareTech Next-Gen UTM
Record-Based Monitoring - Web Browsing History
Web browsers record stores a list of page title, time of visit and tracks visited
websites. Clicking on web history links displays scanned webpages at the moment.
ShareTech Information Co., Ltd.
Here comes your footer
Page 29
ShareTech Next-Gen UTM
Record-Based Monitoring - Email Delivery Record
All incoming and outgoing mail will be
recorded along with attached files.
Email record can be exported to a separate
EML file which is most likely to be saved in
and read in any operating system.
ShareTech Information Co., Ltd.
Here comes your footer
Page 30
ShareTech Next-Gen UTM
Record-Based Monitoring - Instant Messaging Record
IM record results include start time, chat time, computer name, IP address, IM
type, account, speaker, and content. Clicking on the content icon, the detailed
chat history will display.
ShareTech Information Co., Ltd.
Here comes your footer
Page 31
ShareTech Next-Gen UTM
Record-Based Monitoring - Encrypted Skype/QQ Record
In addition to user access control, complete content record (text and file
transmission) and search box are provided for administrators to find chat history
fast via the friendly interface.
ShareTech Information Co., Ltd.
Here comes your footer
Page 32
ShareTech Next-Gen UTM
Easy Management - Central Management System (CMS)
Increase operation and distribution
efficiency
Avoid costly mistakes and significantly
reduce costs in network management
Manage customers distributed in
different areas
Manage distributed appliances
installation across remote offices and
clients with ease
ShareTech Information Co., Ltd.
Here comes your footer
Page 33
ShareTech Next-Gen UTM
Easy Management - AP Management
ShareTech UTM monitors operational status, online user status via the
management interface.
Administrators gain controls over flow, delivery, AP groups and access to the
internal wireless network.
ShareTech Information Co., Ltd.
Here comes your footer
Page 34
ShareTech Next-Gen UTM
Easy Management - Flow Reports
Chart type options allow
administrators to custom how
the chart types (bar, pie, line,
table) or texts will be displayed
at the top of the report.
ShareTech UTM displays
operation status for the time
frame specified (day, week,
month), including
CPU/RAM/modification
times/security level/ flow
monitor reports.
ShareTech Information Co., Ltd.
Here comes your footer
Page 35
Becoming Our Agent
What you need to know before getting starteded
Our Vision
ShareTech Next-Gen UTM Four Major Features
ShareTech Next-Gen UTM Product Series and Spec
Service and Support
Success Stories
ShareTech Information Co., Ltd.
Here comes your footer
Page 36
ShareTech Product Series and Spec
Product Line Extension
Middle-sized Business
Performance
SMB
Recommended
Users: 100
Large Enterprise
Recommended
Users: 400~1000
Recommended
Users: 200
Branch Office
Recommended
Users: 50
HiGuard Pro
Firewall, IPv4/v6, QoS, Load
Balance, VPN, Content
Filter…
UR-910
UR-915
UR-918
Anti-Virus, Anti-Spam,
Firewall, IPv4/v6, QoS,
Load Balance, VPN, Record,
Content Filter…
UR-930
UR-935
UR-938
Anti-Virus, Anti-Spam, IDP,
Botnet, Firewall, IPv4/v6,
QoS, Load Balance, VPN,
SSL VPN , Record, Content
Filter…
UR-955
UR-958
UR-959
UR-760
UR-760F
Anti-Virus, Anti-Spam, IDP,
Botnet, Firewall, Co-Defense,
Audit, IPv4/v6, QoS, Load
Balance, VPN, SSL VPN, Record,
Flow Analysis, Content Filter….
Business Size – Recommended Users
ShareTech Information Co., Ltd.
Here comes your footer
Page 37
ShareTech Product Series and Spec
UR Series
HiGuard Pro
UR-910
UR-915
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
Throughput: 600Mbps
160,000 sessions
VPN: 78Mbps
2WAN/1LAN/1DMZ
Desktop
Throughput: 600Mbps
170,000 sessions
VPN: 85Mbps
2WAN/1LAN/1DMZ
1U
Throughput: 600Mbps
170,000 sessions
VPN: 85Mbps
2WAN/1LAN/1DMZ
1U
UR-918
UR-930
UR-935
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
Throughput: 600Mbps
170,000 sessions
VPN: 85Mbps
HTTP Anti-Virus: 65Mbps
2WAN/1LAN/1DMZ
1U
ShareTech Information Co., Ltd.
Throughput: 950Mbps
600,000 sessions
VPN: 240Mbps
HTTP Anti-Virus: 120Mbps
2WAN/1LAN/1DMZ
1U
Here comes your footer
Throughput: 950Mbps
620,000 sessions
VPN: 280Mbps
HTTP Anti-Virus: 124Mbps
4WAN/1LAN/1DMZ
1U
Page 38
ShareTech Product Series and Spec
UR Series
UR-938
•
•
•
•
•
•
Throughput: 960Mbps
620,000 sessions
VPN: 290Mbps
HTTP Anti-Virus: 124Mbps
4WAN/1LAN/1DMZ
1U
UR-955
UR-958
•
•
•
•
•
•
•
•
•
•
•
•
Throughput: 1,000Mbps
1,850,000 sessions
VPN: 650Mbps
HTTP Anti-Virus: 350Mbps
4WAN/1LAN/1DMZ
1U
UR-760
UR-959
•
•
•
•
•
•
Throughput: 1,600Mbps
1,850,000 sessions
VPN: 650Mbps
HTTP Anti-Virus: 350Mbps
4WAN/1LAN/1DMZ
1U
ShareTech Information Co., Ltd.
Throughput: 1,000Mbps
1,850,000 sessions
VPN: 650Mbps
HTTP Anti-Virus: 350Mbps
4WAN/1LAN/1DMZ
1U
•
•
•
•
•
•
Throughput: 4,800Mbps
2,000,000 sessions
VPN: 830Mbps
HTTP Anti-Virus: 1,080Mbps
4WAN/3LAN/1DMZ
1U
Here comes your footer
Page 39
ShareTech Product Series and Spec
Comparison and Contrast - SMB
HiGuard Pro
UR-910
UR-915
UR-918
UR-930
UR-935
UR-938
HD
X
X
250G
250G
250G
250G
250G
Suggested Users
Under 70
50-75
50-75
50-100
100-200
100-200
100-200
Firewall
O
O
O
O
O
O
O
Outbound
O
O
O
O
O
O
O
Inbound
X
X
O
O
O
O
O
CMS+AP Control
O
O
O
O
O
O
O
Co Defense
X
O
O
O
O
O
O
VPN
O
O
O
O
O
O
O
SSL VPN
X
O
O
O
O
X
O
Anomaly Block
X
O
O
O
O
O
O
IDP & BotNet
X
X
O
O
O
X
O
Anti-Spam
X
X
O
O
O
O
O
Anti-Virus
X
X
O
O
O
O
O
URL Database
X
X
O
O
O
O
O
Content Record
X
X
X
O
O
O
X
Reports/Audit
Option / X
X/X
X/X
Option / X
Option / Option
X / X
X/X
ShareTech Information Co., Ltd.
Here comes your footer
Page 40
ShareTech Product Series and Spec
Comparison and Contrast - Enterprises
UR-955
UR-958
UR-959
UR-760
UR-760F
HD
500G
500G
500G
300G 2.5’
300G 2.5’
Suggested Users
Under 400
Under 400
Under 600
600-1000
600-1000
Firewall
O
O
O
O
O
Outbound
O
O
O
O
O
Inbound
O
O
O
O
O
CMS+AP Control
O
O
O
O
O
Co Defense
O
O
O
O
O
VPN
O
O
O
O
O
SSL VPN
X
O
O
O
O
Anomaly Block
O
O
O
O
O
IDP
X
O
O
O
O
BotNet
O
O
O
O
O
Anti-Spam
O
O
O
O
O
Anti-Virus
O
O
O
O
O
URL Database
O
O
O
O
O
Content Record
O
X
O
O
O
Reports
O
O
O
O
O
Audit
Option
Option
Option
O
O
ShareTech Information Co., Ltd.
Here comes your footer
Page 41
Becoming Our Agent
What you need to know before getting starteded
Our Vision
ShareTech Next-Gen UTM Four Major Features
ShareTech Next-Gen UTM Product Series and Spec.
Service and Support
Success Stories
ShareTech Information Co., Ltd.
Here comes your footer
Page 42
ShareTech Service and Support
Heaquarter, Branches in Taiwan & Oversea Market Expansion
China, Japan, Philippine, Indonesia, Malaysia, Thailand,
Vietnam, Bangladesh, Lebanon
2001
Taipei
2005
Shanghai
1999
Taichung
2006
Kaohsiung
ShareTech
ShareTech Information
Information Co.,
Co., Ltd.
Ltd. Page 43
Here comes your footer
Page 43
Becoming Our Agent
What you need to know before getting starteded
Our Vision
ShareTech Next-Gen UTM Four Major Features
ShareTech Next-Gen UTM Product Series and Spec.
Service and Support
Success Stories
ShareTech Information Co., Ltd.
Here comes your footer
Page 44
ShareTech Success Stories
Business
ShareTech Information Co., Ltd.
Here comes your footer
Page 45
ShareTech Success Stories
Governments and Schools
ShareTech Information Co., Ltd.
Here comes your footer
Page 46
ShareTech Online Demo
Try it online!
http://www.sharetech.com.tw/web_eng/main.php?type=support
&down=On-Line%20Demo
ShareTech Information Co., Ltd.
Here comes your footer
Page 47
www.sharetech.com.tw
Technical Support
[email protected]
Sales Inquiry
[email protected]
ShareTech Information Co., Ltd.
Here comes your footer
Page 48