Benefits:
High-Performance VPN Concentrator Integrating Both IPSec VPN
and SSL VPN
ZyWALL USG 1000 is a Unified Security Gateway engineered to provide
a variety of security services on top of a robust, hardware-accelerated
platform. By integrating both IPSec VPN and SSL VPN technologies,
the ZyWALL USG 1000 allows organizations to establish Virtual Private
Network (VPN) connections amongst multiple locations such as remote
branch offices, business partner sites and even a remote teleworker
getting connected in a potentially unsafe hotel hotspot. Communication
channels are securely encrypted so that information leakage / data
theft can be mitigated when transmitting confidential information
over insecure networks, such as the Internet. The Hub and Spoke
VPN feature is capable of reducing policy management overhead dramatically
in a complex, multi-site corporate network infrastructure.
Proactive Network Protection against Blended Threats
By integrating cutting-edge technologies on a robust platform, the
ZyWALL USG 1000 is competent to provide multi-layered protection
for security-aware businesses. The gateway anti-virus security service
of the ZyWALL USG 1000 is powered by Kaspersky Labs, whose technology
boasts the world's shortest response time against emerging viruses
and spyware. As a result, it helps stopping blended threats at the
network edge while keeping viruses/spyware out of corporate networks.
With a SecuASIC co-processor built-in, the ZyWALL USG 1000 can deliver
robust and reliable performance under real-world networking loads.
With the embedded signature-based IDP (Intrusion Detection and Prevention)
engine, the ZyWALL USG 1000 performs L7 packet inspection for protocol
/ traffic anomaly or matched patterns. Thus, the ZyWALL USG 1000
provides comprehensive Intrusion Detection and Prevention capability
to proactively detect and block potential worms, viruses, Trojans
and VoIP threats, etc. In response to the ever-evolving threats,
up-to-date signatures / patterns are automatically downloaded from
rock-solid ZSDN infrastructure and installed on your ZyWALL USG
1000.
Application Patrol to Manage the Use of IM/P2P Applications
The ZyWALL USG 1000 is specially crafted to manage the use of IM/P2P
applications in modern networking environment without hassles. Armed
with AppPatrol, a central dashboard for managing various types of
IM/P2P applications, security staff can easily create fine-grained
access policy based on ever-changing security needs: identifying
and restricting different access levels of prevailing IM/P2P protocols,
restricting time of access for different groups of users, enforcing
bandwidth quota against certain types of P2P application and prioritizing
VoIP traffics to ensure best call quality over slow WAN ISP links.
Altogether, the ZyWALL USG 1000 is an ideal solution to solve the
dilemma in terms of productivity and security.
User-Aware Policy Engine Enables Access Granularity
In addition to basic access control capabilities, the intelligent
user-aware policy engine on the ZyWALL USG 1000 is designed to make
packet-forwarding decisions based on multiple criteria (such as
user ID, user group, time of access and network quota, etc.). Furthermore,
security staff can apply access policies against a variety of security
features such as VPN, Content Filter and Application Patrol. In
conjunction with VLAN and custom security zones, corporate security
policies can be effectively enforced to prevent unauthorized access
to network resources.
Bandwidth Management Ensures Quality of Service
The ZyWALL USG 1000 provides bandwidth management features for traffic
prioritization to guarantee or restrict the bandwidth usage per
interface / protocol. Security staff can allocate bandwidth for
a variety of applications or computer hosts on the corporate network,
regardless of the direction of the connection. For example, it's
possible to assign higher priority and larger bandwidth to time-critical
applications such as VoIP and video conferencing for quality transmission
services. In addition, ZyWALL USG 1000 allows you to keep track
of bandwidth usage with comprehensive statistical reports.
VoIP Security: Protecting the Converged Networks
Attracted the benefits, more and more businesses are deploying VoIP
applications on their networks. Along with the transition to VoIP
also comes with security risks and voice quality issues. As a VoIP-friendly
firewall, the ZyWALL USG 1000 reduces the security risks associated
with the adoption of VoIP by offering the SIP/H.323 ALG feature
to dynamically open only the required ports during the VoIP calls;
once the call is complete, the opened ports are automatically closed
to prevent port sniffing. The IDP feature can detect and prevent
attacks usually associated VoIP deployment. Ultimately, by constructing
VoIP traffic over VPNs with traffic prioritization, security staff
could mitigate security breaches while optimizing call quality over
existing ISP links.
High Availability Features Guarantee Non-Stop Operations for
Mission-Critical Applications
With high availability features, the ZyWALL USG 1000 helps the security
staff to easily set up a highly reliable and secure network infrastructure
for your business. To minimize the impact of single-point of failures,
the ZyWALL USG 1000 supports device HA (High Availability) to assure
network availability should any device failure happen. On the WAN
side, the ZyWALL USG 1000 can connect multiple ISP links to ensure
Internet availability while a single ISP link may be unreliable.
The multiple WAN load balancing features optimizes bandwidth usage
over each ISP link.
ZyXEL
ZyWALL USG 1000
ZyXELGuard.com is a division of Virtual Graffiti Inc, an authorized
ZyXEL reseller.