Simplify your network with
Zscaler Cloud Firewall
Full next generation firewall capabilities without
the cost and complexity of NGFW appliances
Watch Video
To benefit from cloud apps, break free from network security appliances and go direct
Securely embracing the cloud and delivering a fast user experience requires local internet breakouts. But, securing internet traffic with traditional UTM and NGFW appliances requires deploying stacks of security appliances in all locations, which is cost prohibitive and extremely difficult to manage.
UTM/NGFW appliance sprawl
- Cost prohibitive to deploy
- Creates appliance sprawl
- Untenable to manage
- Compromises branch security
- Performance degrades with SSL inspection and cloud apps with long-lived connections
Cloud Firewall Solution
Zscaler enables secure local breakouts – without appliances
Zscaler Cloud Firewall enables fast and secure local internet breakouts for all ports and protocols, without appliances. Cloud Firewall scales elastically to handle all your cloud application traffic, and is an integral part of the Zscaler Cloud Security Platform, which brings the entire security stack closer to the user to ensure identical protection no matter where they connect.
Read the Solution Brief
More powerful than a next-generation firewall
The next-generation firewalls (NGFWs) in use today were architected over a decade ago. But, providing security and access controls for the cloud-first enterprise requires dynamic capabilities that NGFWs were not designed to deliver. Explore how Zscaler Cloud Firewall capabilities surpass those of NGFWs or virtualized appliances.
Learn more about Cloud FirewallCloud Firewall product benefits
Transform with Zscaler.
Enables secure local internet breakouts
Provides direct to internet connections for a fast user experience, without any appliances to deploy or manage
Brings the entire security stack close to the user
Ensures identical protection for users from wherever they connect
Reduces costs and complexity
Optimizes MPLS backhauling spend and eliminates costly and time-consuming patch management, coordination of outage windows, and policy management
Scales services elastically
Handles SSL inspection and cloud application traffic requiring long-lived connections for a fast user experience
Provides security and access controls for internet traffic on all ports
Delivers firewall-as-a-service to provide security and access controls for internet traffic on all ports, not just 80 and 443, to prevent advanced threats
Logs every session and delivers real-time visibility and policy enforcement
Across all users, all locations, all applications, and all ports and protocols from a single console
“The next gen firewall capabilities are actually a core requirement. It was one of the primary considerations in selecting Zscaler. We hadn't found in any of the other cloud services that actually had a full protocol next gen capability."
Go from overall visibility to actionable information in real time
With Zscaler Cloud Firewall, apps are visible, regardless of port or protocol
Define and immediately enforce all policies for all locations from a single console
Easily create granular policies at the user, department, location, or application level
1. HTTP/HTTPS traffic only on guest Wi-Fi
2. Allow FTP for IT users only
3. Block all P2P apps except Skype for Business
4. Allow access to dynamic IPs based upon FQDN
Suggested Resources
The SC Awards’ Winner (2016)—Best Cloud Computing Security
