What Is Unified Threat Management … and why is it important that you implement it NOW?
Unified Threat Management (UTM) has evolved from the network security industry. Starting around 2004, UTM integrates many security features into a single appliance. Typical UTM includes Firewall Services, Gateway Anti-Virus, Gateway Anti-Spam, Virtual Private Networks, Web Content Filtering, Intrusion Detection/Prevention Systems, Network Load Balancing, and more.
That’s a lot of acronyms and long words, so let’s discuss each in simple English instead of “GeekSpeak”.
Firewall Services: UTM systems include all the functionality of a traditional firewall, plus a lot more. A firewall is a device that allows you to set policies that define what is and is not allowed to enter your network, and from where. For example, you may want to allow access to your email, but require a secure VPN tunnel for access to any other information on your network. Firewall rules are like keys to the locks on your doors. They keep honest people honest. But today most security professionals agree that you need more than just a firewall.
Gateway Anti-Virus: Everything coming into and out of your network should be scanned for viruses and malware. With this system enabled, hackers can’t send viruses into your network. When you access the Internet and happen to land on an infected web site, the gateway anti-virus will keep your system from becoming infected.
Gateway Anti-Spam: This is a spam and junk email prevention system that is part of the UTM appliance. Although we typically use a hosted service, many UTM appliances include anti-spam services on the device. This allows even small offices to keep their inbox clear from the junk mail that no one likes.
Virtual Private Networks (VPN): A VPN is a method of connecting two networks together into a single logical network. VPN systems are used to save money by connecting offices together over the Internet. Before VPN technology, if you needed to connect two or more offices together, you would have to have a private “leased line” between them. Since the development of VPN systems, these connections now can go through the Internet. The VPN connection allows the sites to “see” one another without being physically connected. In addition to the Office-to-Office VPN’s described above, there are also “PC to Site” VPN systems that allow travelling or home users to access the office network.
Virtual Private Networks used to be very expensive and cumbersome, requiring the installation of specialized software on each computer. But they have evolved quite a bit in recent years, and now you can connect securely using just a web browser.
Web Content Filtering: UTM appliances with web filtering can “look” at the web sites that your employees go to, and block or limit sites that do not conform to your company policies. Web sites can be blocked by category, such as “Pornography” or “Auction Sites”. Sites can also be blocked by the specific web site address (e.g. www.yahoo.com). Advanced web content systems can also scan the text presented in a web page, and block sites that contain offensive words. All of these options are easily configurable to your exact requirements.
Intrusion Detection/Prevention Systems (IDPS): At the very heart of Unified Threat Management, IDPS systems are always on the lookout for rogue programs seeking to enter your network and infiltrate your systems. Intrusion Prevention keeps hackers from running programs to compromise your network, and can even stop attacks originating from within your network!
Network Load Balancing: These days, access to the Internet is a priority. Many businesses depend on it and use it on a daily basis. They would be out of business if it was down for too long. The Network Load Balancing feature allows two or more Internet connections to be managed by one device. They can be set to either balanced mode or failover mode. In balanced mode, all of the active connections are used at the same time, with the Internet traffic “balanced” between them. In failover mode, one Internet connection is primary and the other secondary. If the primary connection fails, the secondary takes over almost immediately.
Why you need it: UTM systems are designed to keep your network safe with a minimum hassle, cost, and intrusion, while maximizing your network security.
That’s a lot of acronyms and long words, so let’s discuss each in simple English instead of “GeekSpeak”.
Firewall Services: UTM systems include all the functionality of a traditional firewall, plus a lot more. A firewall is a device that allows you to set policies that define what is and is not allowed to enter your network, and from where. For example, you may want to allow access to your email, but require a secure VPN tunnel for access to any other information on your network. Firewall rules are like keys to the locks on your doors. They keep honest people honest. But today most security professionals agree that you need more than just a firewall.
Gateway Anti-Virus: Everything coming into and out of your network should be scanned for viruses and malware. With this system enabled, hackers can’t send viruses into your network. When you access the Internet and happen to land on an infected web site, the gateway anti-virus will keep your system from becoming infected.
Gateway Anti-Spam: This is a spam and junk email prevention system that is part of the UTM appliance. Although we typically use a hosted service, many UTM appliances include anti-spam services on the device. This allows even small offices to keep their inbox clear from the junk mail that no one likes.
Virtual Private Networks (VPN): A VPN is a method of connecting two networks together into a single logical network. VPN systems are used to save money by connecting offices together over the Internet. Before VPN technology, if you needed to connect two or more offices together, you would have to have a private “leased line” between them. Since the development of VPN systems, these connections now can go through the Internet. The VPN connection allows the sites to “see” one another without being physically connected. In addition to the Office-to-Office VPN’s described above, there are also “PC to Site” VPN systems that allow travelling or home users to access the office network.
Virtual Private Networks used to be very expensive and cumbersome, requiring the installation of specialized software on each computer. But they have evolved quite a bit in recent years, and now you can connect securely using just a web browser.
Web Content Filtering: UTM appliances with web filtering can “look” at the web sites that your employees go to, and block or limit sites that do not conform to your company policies. Web sites can be blocked by category, such as “Pornography” or “Auction Sites”. Sites can also be blocked by the specific web site address (e.g. www.yahoo.com). Advanced web content systems can also scan the text presented in a web page, and block sites that contain offensive words. All of these options are easily configurable to your exact requirements.
Intrusion Detection/Prevention Systems (IDPS): At the very heart of Unified Threat Management, IDPS systems are always on the lookout for rogue programs seeking to enter your network and infiltrate your systems. Intrusion Prevention keeps hackers from running programs to compromise your network, and can even stop attacks originating from within your network!
Network Load Balancing: These days, access to the Internet is a priority. Many businesses depend on it and use it on a daily basis. They would be out of business if it was down for too long. The Network Load Balancing feature allows two or more Internet connections to be managed by one device. They can be set to either balanced mode or failover mode. In balanced mode, all of the active connections are used at the same time, with the Internet traffic “balanced” between them. In failover mode, one Internet connection is primary and the other secondary. If the primary connection fails, the secondary takes over almost immediately.
Why you need it: UTM systems are designed to keep your network safe with a minimum hassle, cost, and intrusion, while maximizing your network security.
If you have any questions regarding UTM or how it works, feel free to contact me. I'm here to help.
till next time,
Andrew Nevens
InnerTag
407-949-0106
andrew@innertag.com
www.innertag.com
I really liked it. GG!
Reply to this