Tufin is proud to offer you best-in-class integrations with Forcepoint’s Stonesoft Next Generation Firewall offerings. The Tufin Orchestration Suite (TOS) and the Forcepoint NGFW offer advanced network protection and visibility for agile and risk-free policy changes. Advanced analysis and automation functionalities allow Tufin to orchestrate change processes across heterogeneous networks, devices, servers, and applications.
With these integrations, our customers can:
The Forcepoint NGFW-Tufin partnership automates network security change workflows, including design and implementation, for a shorter, more efficient process. Changes are automatically provisioned across network devices. Tufin’s centralized policy enforcement reduces the attack surface by mapping network traffic flow and providing detailed insights on your network segmentation across physical networks and hybrid cloud platforms.
Tufin’s native integration with Forcepoint’s Stonesoft Next Generation Firewall enables full rule lifecycle management, beginning with visibility, through change management workflow and automation. Tufin’s best–in–class support of Forcepoint’s Stonesoft Next Generation Firewall extends your investment to the rest of your organization’s hybrid cloud infrastructure, delivering global network security and comprehensive continuous compliance.
The Forcepoint NGFW brings scalability to network security. You can deploy it anywhere in the world through the Secure Management Console (SMC) to unify policy management, incident response, and reporting in real time. The Forcepoint NGFW offers fast, flexible SD-WAN connectivity to protect people and data through ever-evolving diverse enterprise networks, whether they’re in branch offices or working remotely.
Forcepoint can handle multiple security roles, including firewall/VPN, intrusion prevention system (IPS), zero trust network access controls, and advanced malware detection and protection.
The Forcepoint NGFW helps your company by:
• Uniquely tailoring access control and deep inspection for each connection to provide high performance and robust security.
• Protecting hundreds of network and cloud applications.
• Combining granular application control, IPS defenses, built-in VPN control, and mission-critical application proxies into a scalable, extensible design.
• Decoding and normalizing traffic with anti-evasion technologies before inspection and across all protocol layers to expose and block advanced threats.
• The ability to cluster up to 16 nodes of different models running different versions for superior networking performance and resilience and enables security such as deep packet inspection and VPNs.
• Building network resiliency and scalability through load balance clustering and multi-ISP support load balancing with application-aware routing,
• Seamlessly pushing updates to a network cluster without interrupting service.
• Extending high-availability coverage to network and VPN connections.
• Offering the ability to take advantage of local broadband connections to complement or replace MPLS.
• Providing user and endpoint context for deeper cybersecurity insights.
• Integrating CASB and Web Security.
• Offering unified software for AWS, Azure, and VMWare deployments.
The Forcepoint NGFW enables faster rollouts of branches, clouds, or data centers. It offers higher levels of security without disruption to reduce downtime. You’ll see less exposure to new vulnerabilities, which gives IT teams more time to deploy new patches. The Forcepoint NGFW also lowers the total cost of ownership (TCO) for network infrastructure and security.
Yes. Tufin is able to centralize the management of NGFWs, traditional firewalls and cloud-based firewalls, as well as managing security policy for cloud security groups.
APG is a powerful feature available with Tufin’s SecureTrack subscription that assesses your firewal rule sets against historic traffic logs to determine which traffic is necessary to define a least-privilege ruleset that you can push out to the device to tighten permissiveness.
Tufin is the most extensible solution in the network security policy management market, supporting virtually any firewall vendor available, including Cisco, Palo Alto Networks, Check Point, Juniper, ManageEngine, Fortinet and many more.
