Protection Modules
You can choose from a number of modules to customize the protection offered
by your firewall to your individual needs and deployment scenario.
Network Protection
All the protection you need to stop sophisticated attacks
and advanced threats while providing secure network
access to those you trust.
Next-gen Intrusion Prevention System
Provides advanced protection from all types of modern
attacks. It goes beyond traditional server and network
resources to protect users and apps on the network as well.
Security Heartbeat
Creates a link between your Sophos Central protected
endpoints and your firewall to identify threats faster,
simplify investigation and minimize impact from attacks.
Easily incorporate Heartbeat status into firewall policies to
automatically isolate compromised systems.
Advanced Threat Protection
Instant identification and immediate response to today’s
most sophisticated attacks. Multi-layered protection
identifies threats instantly and Security Heartbeat provides
an emergency response.
Advanced VPN technologies
Adds unique and simple VPN technologies including our
clientless HTML5 self-service portal that makes remote
access incredibly simple or utilize our exclusive light-weight
secure SD-RED (Remote Ethernet Device) VPN technology.
Web Protection
Unmatched visibility and control over all your user’s web
and application activity.
Powerful user and group web policy
Provides enterprise-level Secure Web Gateway policy
controls to easily manage sophisticated user and group
web controls. Apply policies based upon uploaded web
keywords indicating inappropriate use or behavior.
Application Control and QoS
Enables user-aware visibility and control over thousands
of applications with granular policy and traffic-shaping
(QoS) options based on application category, risk, and
other characteristics. Synchronized Application Control
automatically identifies all the unknown, evasive, and
custom applications on your network.
Advanced Web Threat Protection
Backed by SophosLabs, our advanced engine provides
the ultimate protection from today’s polymorphic and
obfuscated web threats. Innovative techniques like
JavaScript emulation, behavioral analysis, and origin
reputation help keep your network safe.
High-performance traffic scanning
Optimized for top performance, our Xstream SSL inspection
provides ultra-low latency inspection and HTTPS scanning
whilst maintaining performance.
See the Licensing section at the end of this document for details of all purchase options.
Email Protection
Consolidate your email protection with anti-spam, DLP, and
encryption.
Integrated Message Transfer Agent
Ensures always-on business continuity for your email,
allowing the firewall to automatically queue mail in the
event servers become unavailable.
Live Anti-Spam
Provides protection from the latest spam campaigns,
phishing attacks, and malicious attachments.
Self-serve Quarantine
Gives employees direct control over their spam quarantine,
saving you time and effort.
SPX Email Encryption
Unique to Sophos, SPX makes it easy to send encrypted
email to anyone, even those without any kind of trust
infrastructure, using our patent-pending password-based
encryption technology.
Data Loss Prevention
Policy-based DLP can automatically trigger encryption or
block/notify based on the presence of sensitive data in
emails leaving the organization.
Web Server Protection
Harden your web servers and business applications against
hacking attempts while providing secure access.
Business Application Policy Templates
Pre-defined policy templates let you protect common
applications like Microsoft Exchange Outlook Anywhere or
SharePoint quickly and easily.
Protection from the latest hacks and attacks
With a variety of advanced protection technologies
including URL and form hardening, deep-linking and
directory traversal prevention, SQL injection and cross-site
scripting protection, cookie signing and more.
Reverse proxy
With authentication options, SSL offloading, and server load
balancing ensure maximum protection and performance
for your servers being accessed from the internet.