Simple, effective cloud-delivered security
Exploding SaaS usage. Proliferating remote locations. Swelling ranks of roaming workers. It’s the new normal. It challenges how organizations work and how they secure users, devices and remote locations. How can a cloud security service, featuring a cloud-delivered firewall, help you reduce complexity and improve your security?
Umbrella’s cloud-delivered firewall
Organizations are embracing direct internet access (DIA) instead of backhauling traffic to the data center. Today organizations seek a cloud-native security service as a simple-to-manage and scalable alternative to costly refresh cycles and maintenance headaches. Firewall in the cloud is now an essential element of a cloud-delivered security service. It helps you to improve security efficacy, and ensure consistent enforcement everywhere.
Intelligent traffic routing in the cloud
Security is not one size fits all. Cisco Umbrella intelligently steers different traffic types to the appropriate function to achieve an ideal balance of security efficacy, user performance, and management simplicity.
Traffic originating from a client request to the internet is sent via an IPSec tunnel to Umbrella, where DNS-layer security protects DNS traffic, the cloud-delivered firewall protects non-web traffic, and the secure web gateway protects web traffic over ports 80/443.
Deepen inspection and control without performance issues
Step up your security. With Umbrella cloud-delivered firewall you gain better visibility and control for internet traffic originating from client requests. Layer 7 application visibility and control, intrusion prevention system (IPS), and layer 3 / 4 firewall protect traffic across all ports and protocols without performance degradation.
Forward traffic to the cloud-delivered firewall by simply configuring an IPSec tunnel from any network device. As new tunnels are created, automatically apply security policies for easy setup, consistent enforcement, and protection against malware, phishing, unacceptable use, and more.
Intrusion prevention system
Prevent exploits. Intrusion prevention system (IPS), based on SNORT 3 technology, uses signature-based detection to examine network traffic flows and take automated actions to catch and drop dangerous packets before they reach their target.
An IPS capability is only as effective as the cyberattack dictionaries. Umbrella IPS uses the extensive signatures (40,000+ and growing) from Cisco Talos, the largest private security threat intelligence organization in the world.
Application visibility and control
Umbrella layer 7 application visibility and control recognizes 2,800+ (and growing) non-web applications and per policy, takes action to block/allow them. Deep packet inspection in network based application recognition (NBAR) analyzes and categorizes network traffic by application. This extends and deepens Umbrella’s application visibility and control for DNS traffic and for web traffic on ports 80/443.
For example, an organization may choose not to allow Microsoft Teams, which uses various ports and protocols. The Umbrella secure web gateway blocks MS Team’s web traffic over ports 80/443 and the cloud-delivered firewall blocks its voice and video traffic.
KCA Deutag moves firewall from network edge to the cloud
KCA Deutag, a distributed oil and gas services company, relies on Cisco Umbrella to consolidate security services across the globe. Learn how Cisco Umbrella cloud-delivered firewall helped them apply consistent rule sets to all of their sites form a centralized console, providing KCA Deutag with a quicker way to deploy.
Umbrella combines multiple security capabilities in a single, cloud-native service to offer powerful security that is easy to deploy and manage — all backed by the power of Cisco Talos threat intelligence.
You can quickly deploy Umbrella across thousands of devices with a few simple clicks. Your users will be protected against threats like malware, ransomware, and botnets with no added latency.
Only Umbrella optimizes inspection to automatically send traffic to specialized services for industry-leading security efficacy.