Smoothwall‎ > ‎

Guardian Web Filter

Guardian Web Filter


Guardian Web Filter blir: 

SWG - Secure Web Gateway software


Över en biljon unika webbsidor och fortsätter att öka

Det enda tillförlitliga sättet att skydda era användare och nätverk effektivt är att genomföra intelligent och dynamisk analys av webbinnehåll i real-tid.
Smoothwall Guardian kombinerar dynamisk kontroll på innehållsfiltrering med robust webbsäkerhet samt intuitiv rapportering och hantering.

Smoothwall fungerar för alla klienter oavsett, om det är Windows, Mac OS X, Linux, iOS eller  Android.
Smoothwalls Guardian Web Filter - Ett webbfilter att lita på!
                                                                                    
    


Produktöversikt


  • Dynamiskt innehålls analys som korrekt kategoriserar och blockerar allt oönskat innehåll
  • Skanning efter webbsidans signatur förhindrar användningen av anonyma proxyservrar
  • Övervaka webbaktivitet och trafik i realtid
  • Kostnadseffektiv filtrering utan kompromisser
  • Avancerad rapportering som förstår och tolkar Internetanvändning
  • "Vem, vad, när och varifrån" policy verktyg för att skapa specifika miljöer som passar alla användar behov

Guardian Web Filter blir: 

SWG - Secure Web Gateway software



Produkt Detaljer


Dynamiskt innehålls analys
Guardian’s Dynamic Content Analysis™-teknik undersöker inte bara innehållet utan sammanhang och konstruktionen av varje webbsida. Områden identifieras och klassificeras i en bråkdel av en sekund, och kan flexibelt blockeras eller tillåtas beroende på vilken typ av innehåll, användaren - eller till och med tid på dagen. Kategorier som hämtar innehåll från IWF databasen * och uppdateras dagligen.

Tillval Web Security & Anti-Malware
Med integrerad anti-malware och webbsäkerhet, upptäcker Guardian och blockerar webbbaserade sabotage program och virus samt andra dolt skadliga innehåll som attacker mot webbläsare och inbäddad programkod.

"Vem, vad, när och varifrån" policy verktyg
Guardians kraftfulla policy verktyg gör att ni kan skapa specifika miljöer som passar alla dina användares behov. Dessa verktyg, minskar den dagliga hanteringen för anpassning av åtkomstnivåer till ständigt föränderliga användarkrav.

SSL filtrering
SSL avlyssning säkerställer att Internet-trafik med säkra anslutningar (SSL / HTTPS) även analyseras och skannas efter hot och olämpligt innehåll. Flexibla policyregler möjliggör att kända finansinstitut kan vitlistas.

Proxyidentifiering
Guardian upptäcker träffsäkert och förhindrar användningen av anonyma proxy verktyg som tillåter användare att kringgå web filter och i hemlighet bryta mot policy regler. Alla begärda sidor granskas för kontroll efter avslöjande signaturer från proxyservrar och nätverk (inklusive SSL / krypterade proxy) och blockeras därefter.

Flexibla, säkra filtreringssystem med autentisering
Filtrering kan enkelt finjusteras med hjälp Guardians intuitiva och lättanvända gränssnitt. Integration med Microsoft Active Directory ®, Novell eDirectory ™ och andra LDAP-system gör det möjligt för principbaserad filtrering så att olika regler kan ställas in för olika användare och / eller rum vid olika tider på dygnet. Soft-blockerande alternativ och tillfällig bypass funktion hjälper också att upprätthålla en flexibel och användarvänlig nivå av filtrering.

Avancerad rapportering
Förstå och tolka Internetanvändning med avancerade och mycket kraftfulla rapporteringsverktyg. Användaraktivitet övervakas i realtid och schemalagda rapporter kan automatiskt utfärdas med över 300 färdiga rapporterings mallar. 

En användar Portal ger också begränsad tillgång till utvalda användare för visning av rapporter.

Snabbmeddelanden
Guardian innehåller verktyg för att styra och övervaka en lång rad Instant Messaging-program. Snabbmeddelandekonversationer, filöverföringar och bilagor kan övervakas, loggas, censureras eller blockeras helt.

Webbcache lagring
Guardians webbproxy cache bidrar till att minska bandbreddsanvändning genom att lagra och hämta besökta webbsidor. Detta är av särskild fördel i en klassrums miljö där många användare kommer att titta på samma material.

Mjukvara, Hårdvara eller Virtuellt. Ert val...


Software Appliance
Guardian is available as an independent software appliance, which means it comes as a complete package with its own operating system (Linux) and can be installed on standard hardware, easily converting an entry-level server into a dedicated security appliance. The benefits of utilising standard hardware are that processing power and memory can be specified to suit, and service agreements with regular suppliers can be leveraged. With a software appliance, the components can also be downloaded and installed immediately. No knowledge of Linux is required.

Hardware Appliance: Secure Web Gateway (SWG)
The Guardian Secure Web Gateway offers the same feature set as the software appliance version of Guardian, but on a 1U rack-mounted appliance. The SWG also supports Bridge Mode (transparent inline proxy). Licensing is flexible and incremental updates and major upgrades can be installed without having to replace the appliance itself.

Virtual Appliance
Guardian can also be installed on a virtual server. Virtual machines come with a number of advantages including better utilisation, scalability and resilience – as well as reduced power bills. As a software appliance, Guardian is tried and tested on a VMware platform and includes the necessary tools to enable full communication between the host and the guest.

UTM/Firewall Module
Guardian can also be supplied in software form as an add-on module for Smoothwall’s UTM appliances and firewalls. The web security and content filtering module offers the same full feature set as our Guardian products.  It integrates seamlessly with our firewall, VPN, IPS, anti-virus, email security and load balancing components to form a powerful all-in-one security solution.

Mobile Guardian (remote laptop filtering)
For policy compliance and legal reasons, many organisations now need to ensure that any Internet browsing that takes place on their equipment is controlled. Mobile Guardian is a desktop client that allows filtering policies to be enforced regardless of location. When laptops return to the network, log files of the remote browsing that has taken place are automatically uploaded and filtering policies updated.

* The IWF is a recognised organisation working in partnership with the police, governments, and the wider online community to combat the availability of criminally obscene content on the Internet.

** Guardian is a UK Government Department of Education (formerly Becta) accredited filtering solution and meets UK national standards for Internet filtering products used in education.

Tekniska Egenskaper


Guardian Web Filter

Dynamic Content Analysis™ Screens the content, context and construction of web pages in detail, accurately detecting and blocking all objectionable, inappropriate, hidden or malicious content (including anonymous proxies).

Search Engine Filtering Filter, monitor and report upon search terms used and force "safe search" on popular search engines.

Logging, Filtering and Censoring of Instant Messenger Applications Control and monitor the use of Instant 
Messaging applications. IM file transfers and attachments can be logged or blocked and selected words or phrases can be censored and set to trigger alerts with reponses sent direct to users' messaging clients. Encrypted Instant Messaging is also supported.

Block Advertising and Cookies Advertising and cookies can be automatically blocked.

Manage MIME, File Extension and Download Size Filtering policies can be set to manage specific file types, and limit download sizes.

Flash Filtering Screens actual SWF file code to accurately detect and block undesirable Flash content such as online games and video players.

SSL Interception Allows all unknown secure traffic to be decrypted and inspected (using Dynamic Content Analysis), so harmful HTTPS/SSL content (including SSL proxies) can be effectively blocked even in transparent proxy mode.

'Who, What, When, Where' Policy Tools True 'who, what, when, where' filtering with flexible user, group, time and location based controls.

Unified Policy Tools and Wizards Unified, easy to use policy setting tools with policy and configuration wizards. With unlimited groups and 'per user' policies and the ability to combine policies with multi-group membership.

Policy Based Controls Different filtering policies can be created and set for different groups of users, in accordance with organisation policy or the AUP.

Quick Block' and 'Quick Allow' Quick Block' and 'Quick Allow' buttons for fast one click fixes
Internet Watch Foundation Blocklists are updated daily with IWF data feeds.

YouTube.com/education Channel Support Allows access to youtube.com/education channel without removing restrictions on other YouTube content.

'Softblock' Option Instead of automatically blocking inappropriate content, users are issued warning messages about content and given options to either continue or cancel.

'Soft-blocking' per Content Category Delivering a better user browsing experience without compromising safety, security or control.

SWURL Devolved Personal Block/Allow  List Management SWURL allows specified users to manage their personal block/allow list via a portal - enabling miscategorised content to be accessed whilst being logged.

Advanced Categorisation Add-to-category functionality allows in-built categorisation to be adjusted with ease. Enhanced real-time categorisation - delivers higher accuracy, better reporting and fewer over-blocks

Customisable URL Blocklists Current, categorised and customisable URL blocklists control access to a pre-defined list of undesirable websites.

Outbound (web post) monitoring & blocking Monitors and blocks text posted on the web (i.e. inappropriate blog / forum / Social Networking / Twitter posts) using a keyword analysis system.

Whitelist mode Users can only access a customised list of 'allowed' sites.

Default 'Safe' Configuration Guardian can be installed with a default 'safe' configuration which filters out a standard range of illegal and objectionable content. Note: Guardian's default 'safe' configuration matches the requirements of CIPA and BECTA standards.

Temporary Bypass Controls Block page includes password protected options to bypass the filter on a temporary basis.

Temporary 'Banned User' List Ban selected users until a selected date or time and run reports with lists of 'banned users' and the duration of their bans.

Configurable 'Site Blocked' Page Site blocked' page can be customised to include a logo, message text, a reason for blocking, un-block buttons, IP address and username.

Flexible Request and Content Modification Modify web page requests and content 'on the fly' to enable neutralisation of malicious JavaScript and other web threats.

Stealth Mode Web pages are filtered and logged as normal, but are not blocked, allowing administrators to monitor activity without affecting users (useful when testing a new installation as it allows the filtering rules to be fine-tuned before 'going live').

Web Proxy Cache Reduce bandwidth utilisation by storing and retrieving frequently accessed web pages from local disk storage.

Mobile Device Filtering Mobile Guardian allows many devices (iOS,OSX,Windows) to be actively filtered and controlled according to the organization’s policies in or out of the home network.  Android will be supported during 2012.

Guest Mobile Device Filtering Guest devices can be accomodated on the network and filtered according to the organization’s policies.

Authentication


Authentication Features Integrate with User Authentication systems Control access based on authenticated identity as opposed to assumed identity derived from a computer’s IP address (supports Microsoft Active Directory®, Novell eDirectory, and other LDAP systems).

Multiple Filter Groups Different filter policies can be allocated to up to 100 different groups of users. Particular users can also be configured not to be subject to any filtering at all.

Transparent Proxy Mode System administration is simplified with support for NTLM authentication in transparent proxy mode; which avoids the need to configure proxy settings for each user computer.

Password-Protected Authentication The use of NTLM with password verification provides seamless single sign-on without the need for users to log in or enter their Windows ID/password again.

Operation


Optional Bridge Mode (Transparent Inline Proxy) SWG Appliance Only Drop in' deployment - allows the appliance to be deployed inline between a switch and a perimeter firewall for ease of installation and configuration.

Rate Limiter by URL The speed or rate at which the proxy server can download information from the Internet can be limited. Bandwidth use can also be limited for specific URLs.

Support for Browser Autoconfiguration Files Provides WPAD (Windows Proxy Auto-Detection) and PAC file support, for automatic configuration of proxy settings in client browsers.

Hardware Healthcare Alerts Notifications about system resource issues (eg low disk space, high memory use, high CPU loads, UPS failures).

Virtualisation Support Supports VMWare and Zen

Default ‘Safe’ Configuration Install with a default ‘safe’ configuration with egress rules and filter policies pre-set.

Reporting


Built-in Report Templates Users can create, customise and save their own report templates and utilise an extensive range (300+) of report templates. Report options include site-specific reports (e.g. YouTube top viewed videos) and IM reporting (time spent messaging and chat friends per user).

Drill Down to a Single User or IP Reports include the user name and IP address of the user PC so AUP violators can be quickly identified. A drill-down facility allows data to be explored to a greater depth - e.g., from a list of blocked sites that users have attempted to access, drill-down to find out which users have been trying to access any particular site. It is possible to view the entire browsing history (including time spent browsing) of a single user.

Automated Reports User-specific reports can be automatically time-scheduled to run on a daily or weekly basis. Reports can also be automatically saved or distributed to recipient lists via email.

AJAX Real-time Logs & Traffic Graphs View web activity instantaneously, with the option to filter by user name, IP address, web site, category or group.

Export into PDF, HTML, Excel, Crystal Reports® Reports can be produced in a range of formats for ease of viewing (with pie charts/graphs) and to aid integration with existing systems.

User Portal Selected users (or groups of users) can be given access to a seperate Guardian interface specifically for viewing reports/logs, controlling temporary bans and downloading SSL VPN clients.

Reports on Domains and Categories Report on top domains, categories, page visits and offenders based on user, group and/or IP address.

Group/Aggregate Reports Automatic data aggregation from multiple remote systems provides district wide reporting.

Incident Alerts Alert messages can be sent by both email and SMS text message to mobile/cell phones for issues requiring immediate attention.