With Zscaler, you can add next-gen firewall protection for all users without the need to deploy or maintain hardware or software. Our cloud handles aggregate traffic at over 100 million sessions per second—always inline and always blocking. Native SSL inspection is built in for every byte of traffic, all the time. So you get complete protection for all users, in all locations, across all ports and protocols—with no headaches.
Next-generation firewalls deliver application awareness that is vital for protecting the data center. But what about the branch or remote office? What is needed there is real-time inspection of Internet requests and replies, including SSL inspection. Not only are packet filtering/stateful firewalls prohibitively expensive when deployed at each location, they are not designed to handle SSL inspection at the required performance level, requiring additional separate hardware or firewalls with more capacity.
Zscaler Cloud Firewall delivers the security that your distributed enterprise, retail outlets, or branch deployment really needs, without any hardware, software, or ongoing maintenance. Because Zscaler Cloud Firewall is part of our global cloud-based security platform, all you need to do is create a VPN or GRE tunnel from your gateway to the Zscaler cloud. Native SSL inspection is built into our platform, not as a “bolt-on” solution like those offered by appliance vendors. And configuration changes can be made instantly—no need for a maintenance window.
Zscaler features more than just control of ports and protocols, with deep packet inspection and heuristics for application identification and control, including:
The next gen firewall capabilities are actually a core requirement. It was one of the primary considerations in selecting Zscaler. We hadn't found in any of the other cloud services that actually had a full protocol next gen capability.Ken Athanasiou, Chief Information Security Office at AutoNation