A firewall instance of Linux

The Astaro security Linux firewall is used to manage data traffic between the internal network and the external network. Administrators can control each protocol, blocking or allowing access to any one of the internal networks, servers, services, and user groups. The firewall checks all online information (Baotou) as well as the application information (payload) to detect and block suspicious data traffic. The firewall is installed on a single standard PC device, and he must exist as the only export of the internal network, so as to play the role of a security guard.

Firewall Feature Description:

Stateful inspection packet filtering (Stateful Packet inspection)

Astaro Security Linux manages the data transfer between the Internet and the internal network, servers, and users by checking the network header. With an easy-to-use graphical interface, administrators can quickly work out rules that block or allow two of information sources and destination sites to be transmitted through protocols or ports.

Astaro Security Linux by checking personal information while Astaro Security Linux also discovers attacks or disturbances to normal programs by tracking the results of ongoing connections.

Packet filtering for application layer depth

Astaro Security Linux Firewall, using the application agent to scan the application-related packet transport content (payload), so as to ensure that it and network transport, e-mail, DNS and other broad application types of rules match.

Security Agent

Astaro Secur Linux provides a comprehensive representation of the following protocols.

These agents simplify management, enabling administrators to activate or cancel protocols and features quickly and easily, such as content filtering, buffering, whitelist and blacklist, file extension filtering, and MIME error checking.

HTTP |　 DNS |　SOCKS |　 POP3 |　Ident | Smtp

NAT address Translation and address camouflage

Dynamic and static network address translation (NAT) and the internal IP address hidden in the "public" IP address can effectively prevent hackers from the internal network, servers and users to obtain information.

DoS Protection

Astaro Security Linux Blocks common DoS attacks, such as TCP SYN Flood, ICMP Flood, UDP Flood, Smurf, Trinoo, and IP spoofing.

Bandwidth control and QoS