www.appgate.com

















 

 
 AppGate Quadrants
 

 
 AppGate Functionality
· 
  
 Full Application Support
· 
  
 Access on a need to know basis
· 
  
 Policy Enforcement
· 
  
 Automated User Support
· 
  
 Device Control
· 
  
 Scalability
· 
  
 Secure Single Sign On
· 
  
 Mobile VPN Roaming
· 
  
 Secure Print
· 
  
 Future Proof
· 
  
 Customized User Experience
· 
  
 Instant Messaging
 

 
 Secure Flexibility
 

 
 Customer Benefits
 

 
 Market Verticals









Copyright © 2005-2007 AppGate Network Security AB.
+46 (0)31 - 774 43 50
All rights reserved.
Legal Notice
Comments to webmaster



AppGate Device Control consists of three different parts: For a system administrator a connecting PC is always a potential threat to the security of the network. It is therefore important to secure the integrity of the PC.

AppGate device control consists of three differen parts:
  • Client checks: Investigates devices.
  • Client command: Commands the PC to perform a specific activety.
  • Personal Firewall: Blocks unwanted traffic.

The AppGate server can force the PC to perform tasks – run a certain command and check the system – to improve the security of the end-point device. Usually this function is used to check antivirus versions or check that the PC is a company PC.

This function also enables the system administrator to remotely manage the PC using applications such as CNV or MRS (Remote Management).

Of course the results of these scans can be a part of the access rule set.

The AppGate Distributed Personal Firewall consists of two components, the Personal Firewall and the Policy Manager. Policy Manager:

Personal Firewall Policy Manager
  • Policy Manager gives the administrator a single point of control.
  • Personal Firewall has no GUI for the user so the user cannot create security holes.
  • Personal Firewall can control traffic to applications by filtering on IP addresses and ports.

The Personal Firewall is designed for remote administration and has no GUI for end users. The Policy Manager allows system administrators to define and distribute stand alone and global policies for all personal firewalls in a network. Different rules can be used depending on user location or machine type: for example, laptops using a WLAN connection while inside the corporate network.

The easy deployment of new rule sets can be used in several ways. One example might be when large organisations use the Distributed Personal Firewall to block a virus attack travelling through specific ports. Another might be the use of a rule set that blocks all types of traffic other than the encrypted tunnel when the user connects to the network.

The Distributed Personal Firewall system can be used together with non-AppGate VPN systems.

But when used together with an AppGate VPN system, the Personal Firewall uses the rights management control system in the AppGate Security Server to enforce a specific policy when the user connects to a protected application server. It is, for example, possible for the AppGate server to close port 80 connections thus preventing a web based attack, before certain resources become available to the user.
White paper [Knowledge Center]






A pharmaceutical company offers all employees access to the corporate network from their home PCs through an AppGate Server. They use the AppGate client in combination with the AppGate personal firewall and client check functionality to make sure the home PC is secure before connecting.

With this solution, the company can give employees access in a controlled and secure manner although they do not use corporate controlled systems. It allows the company to save money by not having to invest in laptops for all employees who need to access corporate resources from home.

Real life Example