The traditional network security model uses standalone devices for maintaining a secure network environment. These standalone network security products are generally deployed as software, running either on a PC or an appliance, and provide product-specific network security functions, like a firewall and VPN. While they do what they are designed for, they fail to provide the comprehensive security, network deployment flexibility and the performance necessary to combat today's ever increasing sophisticated cyber threats. 

External threats like spyware, phishing, pharming, viruses and more are targeting the individual user, extracting corporate and personal confidential information or turning their devices into parts of massive botnets to further the attack. In addition, internal users are compromising enterprise security out of ignorance or malicious intent and are posing the single largest threat to enterprise security. 

An effective UTM solution delivers a network security platform that comprises robust and fully integrated security and networking functions such as network firewalling, intrusion detection and prevention systems (IDS/IPS) and gateway antivirus/antispam (AV), VPN, Content Filtering, Bandwidth Management, Reporting, Multi-Link Manager, Load Balancing, along with other features too. 

Individual security solutions, while dealing with different aspects of threats, do not give adequate and rapid response to threats. A Unified Threat Management solution provides comprehensive protection to enterprises with tightly integrated multiple security features working together on a single appliance. A single UTM appliance makes it very easy to manage an enterprise’s security strategy, with just one device to manage, one source of support and single way to set up and maintain every aspect of its security solution. A UTM solution is highly cost-effective and offers a centralized console that enables monitoring of network security at remote locations. 

Web-based applications and services have changed the landscape of information delivery and exchange in today’s corporate, government, and educational arenas. Ease of access, increased availability of information, and the richness of web services have universally increased productivity and operational efficiencies. These increases have led to heavier reliance on web-based services and greater integration of internal information systems and data repositories with web-facing applications. 

While motivations of attackers against a victim’s corporate and organizational assets remain the same (financial, IP, identity theft, services disruption, or denial of service, for example), web applications enable a whole new class of vulnerabilities and exploit techniques such as SQL injection, cross-site scripting (XSS), and cross-site request forgery, to name a few.

The complexity of services, potential severity of breaches, and mounting sophistication of attacks requires additional functionality beyond the capability of traditional network-based security products. The emergence of dedicated web application firewall technology provides a comprehensive and focused solution to help increase the security of web-based services and protect valuable information assets.

Cyberoam is the only UTM firewall that embeds user identity in firewall rule matching criteria, enabling enterprises to configure policies and identify users directly by the username rather than through IP addresses. Cyberoam’s powerful hardware firewall provides stateful and deep packet inspection, access control, user authentication, network and application-level protection.

Kerio WinRoute Firewall is software based firewall which is ideally suited for networks that require strict user-based security policies and detailed traffic analysis and reporting.