Presentation is loading. Please wait.

Presentation is loading. Please wait.

Palo Alto Networks SLO WUG NG 15.2.2012 Silvester Drobnič, CHS d.o.o.

Published byRose Patrick Modified over 7 years ago

Similar presentations

Presentation on theme: "Palo Alto Networks SLO WUG NG 15.2.2012 Silvester Drobnič, CHS d.o.o."— Presentation transcript:

1 Palo Alto Networks SLO WUG NG 15.2.2012 Silvester Drobnič, CHS d.o.o. silvester.drobnic@chs.si

2 About Palo Alto Networks Palo Alto Networks is the Network Security Company World-class team with strong security and networking experience Founded in 2005, first customer July 2007, top-tier investors Builds next-generation firewalls that identify / control 1,300+ applications Restores the firewall as the core of enterprise network security infrastructure Innovations: App-ID™, User-ID™, Content-ID™ Global momentum: 5,300+ customers August 2011: Annual bookings run rate is over US$200 million*, cash-flow positive last five consecutive quarters

3 2011 Magic Quadrant for Enterprise Network Firewalls Source: Gartner silvester.drobnic@chs.si

4 Gartner: Firewalls Are Not Commoditized Next-generation firewalls are evolving the enterprise network firewall market Running on general purpose server hardware won’t perform next-generation firewall features well for the enterprise Established vendors are milking their installed base – raising prices without delivering new features UTM is for SMB. SMB ≠ enterprise branch office. silvester.drobnic@chs.si

5 Applications Have Changed – Firewalls Have Not The gateway at the trust border is the right place to enforce policy control - Sees all traffic - Defines trust boundary BUT…Applications Have Changed - Ports ≠ Applications - IP Addresses ≠ Users - Packets ≠ Content Problem: IT Can’t Safely Enable Internet Applications Leaving IT blind to apps, users & content Collaboration / Media SaaS Personal silvester.drobnic@chs.si

6 New generation of addicted Internet users – smarter than you? silvester.drobnic@chs.si

7 the attacker is not a bored geek

8 nation states and organized crime

9 New Requirements for the Firewall 1. Identify applications regardless of port, protocol, evasive tactic or SSL 2. Identify users regardless of IP address 3. Scan content in real-time for threats and sensitive data embedded across applications 4. Granular visibility and policy control over applications, users and content 5. Multi-gigabit, in-line deployment with no performance degradation Requirements – The Next Generation Firewall silvester.drobnic@chs.si

10 Unique ID Technologies Transform the Firewall App-ID Identify the application User-ID Identify the user Content-ID Scan the content silvester.drobnic@chs.si

11 Single-Pass Parallel Processing (SP3) Architecture Single Pass Single processes for: - Traffic classification (app identification) - User/group mapping - Content scanning – threats, URLs, confidential data One policy Parallel Processing Function-specific hardware engines Multi-core security processing Separate data/control planes Up to 20Gbps, Low Latency silvester.drobnic@chs.si

12 NSS Labs test – PAN as IPS The highest IPS block rate in recent history (93.4%) 100% resistance to IPS evasion techniques Simple IPS configuration and tuning. Provided all the above while exceeding the datasheet performance metrics silvester.drobnic@chs.si

13 PAN Hardware & Licenses Hardware Enota se izbira glede na zahtevano propustnost Možna je HA postavitev enot v A-P in A-A načinu Licence Support licenca je obvezna Opcijski licenci: - Thread licenca (IPS, AV, AS) - URL filtering Ostale licence: - Virtual Firewall - Global Protect POMEMBNO Ni omejitve na uporabnike Ni dodatnih licenc za VPN PA-500 PA-2020 PA-2050 PA-4020 PA-4050 PA-4060 PA-5060 PA-5050 PA-5020 silvester.drobnic@chs.si

14 Kako naprej Zahtevajte test PANa Po testu zahtevajte AVR poročilo V vmesnem času: - PAN AUR poročilo - Gartnerjeva NGF definicija - Gartnerjevo zadnje poročilo o požarnih pregradah - NSS Labs poročilo o PAN IPS zmogljivosti - PAN Research center na WEBu: http://www.paloaltonetworks.com/researchcenter/ silvester.drobnic@chs.si

15 DEMO - Flexible Deployment Options Visibility Transparent In-Line Firewall Replacement Application, user and content visibility without inline deployment IPS with app visibility & control Consolidation of IPS & URL filtering Firewall replacement with app visibility & control Firewall + IPS Firewall + IPS + URL filtering silvester.drobnic@chs.si

16

17 Research Center silvester.drobnic@chs.si

18 Application Visibility and Risk Report Tells the budget holder what we are going to review Presents findings in clear, business oriented manner Introduces business risks associated with the application traffic silvester.drobnic@chs.si

19 Kako naprej Distributer: CHS d.o.o. - Kontaktna oseba: Silvester Drobnič - silvester.drobnic@chs.si - gsm: 041 757 107 Dokumenti na ftp://ftp2.chs.si/PAN/NG/ V vmesnem času: - PAN AUR poročilo - Gartnerjeva NGF definicija - Gartnerjevo zadnje poročilo o požarnih pregradah - NSS Labs poročilo o PAN IPS zmogljivosti - PAN Research center na WEBu - Ocenite CAPEX in OPEX vaše trenutne opreme - Ali veste kaj spušča vaš obstoječi FW v omrežje silvester.drobnic@chs.si

Download ppt "Palo Alto Networks SLO WUG NG 15.2.2012 Silvester Drobnič, CHS d.o.o."

Similar presentations

Application Usage and Risk Report 7 th Edition, May 2011.

Application Usage and Risk Report 7 th Edition, May 2011.
Next Generation FWs Against Modern Malware and Threads Hakan Unsal – Technical Security Consultant Tunc Cokkeser – Regional Sales Manager.

Next Generation FWs Against Modern Malware and Threads Hakan Unsal – Technical Security Consultant Tunc Cokkeser – Regional Sales Manager.
Palo Alto Networks Jay Flanyak Channel Business Manager

Palo Alto Networks Jay Flanyak Channel Business Manager
Palo Alto Networks Overview

Palo Alto Networks Overview
Enabling business beyond the corporate network.

Enabling business beyond the corporate network.
Palo Alto Networks Product Overview

Palo Alto Networks Product Overview
Security as an Enabler for Data Centers and Cloud Networks Adam Geller Vice President, Product Management July 16 th, 2013.

Security as an Enabler for Data Centers and Cloud Networks Adam Geller Vice President, Product Management July 16 th, 2013.
New Solutions to New Threats. The Threats, They Are A Changing Page 2 | © 2008 Palo Alto Networks. Proprietary and Confidential.

New Solutions to New Threats. The Threats, They Are A Changing Page 2 | © 2008 Palo Alto Networks. Proprietary and Confidential.
Next Generation Network Security Carlos Heller System Engineering.

Next Generation Network Security Carlos Heller System Engineering.
Bucharest, July 31, 2012 | Bitdefender 2012 Cloud Security for Endpoints Customer Presentation.

Bucharest, July 31, 2012 | Bitdefender 2012 Cloud Security for Endpoints Customer Presentation.
Palo Alto Networks Threat Prevention. Palo Alto Networks at a Glance Corporate Highlights Founded in 2005; First Customer Shipment in 2007 Safely Enabling.

Palo Alto Networks Threat Prevention. Palo Alto Networks at a Glance Corporate Highlights Founded in 2005; First Customer Shipment in 2007 Safely Enabling.
Blue Coat Systems Securing and accelerating the Remote office Matt Bennett.

Blue Coat Systems Securing and accelerating the Remote office Matt Bennett.
Palo Alto Networks Solution Overview May 2010 Denis Pechnov Sales, EMEA.

Palo Alto Networks Solution Overview May 2010 Denis Pechnov Sales, EMEA.
Blue Coat: Your partner to sales success Nigel Hawthorn VP EMEA Marketing +44 7081 487 987

Blue Coat: Your partner to sales success Nigel Hawthorn VP EMEA Marketing
© 2007 Palo Alto Networks. Proprietary and Confidential Page 1 | Next Generation Firewalls Nir Zuk Founder and CTO.

© 2007 Palo Alto Networks. Proprietary and Confidential Page 1 | Next Generation Firewalls Nir Zuk Founder and CTO.
Citrix Partner Update The Citrix Delivery Centre.

Citrix Partner Update The Citrix Delivery Centre.
Palo Alto Networks Customer Presentation

Palo Alto Networks Customer Presentation
1 SharePoint Momentum 17K+ Customers, 100M Licenses Leader in Gartner ® Magic Quadrants, Forrester Wave TM Continued Platform and Application Innovation.

1 SharePoint Momentum 17K+ Customers, 100M Licenses Leader in Gartner ® Magic Quadrants, Forrester Wave TM Continued Platform and Application Innovation.
MIGRATION FROM SCREENOS TO JUNOS based firewall

MIGRATION FROM SCREENOS TO JUNOS based firewall
Cisco Confidential 1 © 2010 Cisco and/or its affiliates. All rights reserved.

Cisco Confidential 1 © 2010 Cisco and/or its affiliates. All rights reserved.

Similar presentations

Ads by Google