Web Filtering

Virtela's Web Filtering service provides two primary services: controlling end-user Internet usage and protecting the corporate network from Internet abuse. Through our Web Filtering service, Virtela can configure rules to block certain types (categories) of web pages. Customers will determine the appropriate number of filtering groups to properly permit/restrict end-user access. Each filtering group is associated with IP addressing or Active Directory group membership to simplify application of filters against end-users. Filtering allows rules to permit, deny or conditionally allow URL access. "Whitelists" and "Blacklists" assure that filtering categories can be customized to allow or deny access to sites that are considered exceptions to a category. This flexibility blocks unwanted content while all desired content remains accessible.

The service includes the deep inspection of URL, IM, and peer-to-peer Internet protocols. This inspection recognizes today's most prevalent Internet threat, the Botnet. A Botnet is a collection of compromised computers that generally uses HTTP or IM protocols for command and control traffic. Botnets also frequently use peer-to-peer communications for distribution of command and control instructions, making them difficult to detect. Virtela's Web Filtering service can identify HTTP traffic that does not appear to be conforming to recognized standards. We focus significant efforts toward tracking and blocking sites that host malicious code, preventing corporate systems from subversion to a Botnet in the first place.

The service affords a business their primary goal of focusing Internet use on business activities. Often administrators need not use denial rules to limit user activity; simply knowing that traffic is tracked and recorded will stop frivolous Internet activity. It also prevents a hostile workplace by blocking access to objectionable content such as pornography and hate groups.

The growing security issue that Web Filtering service solves is protection against Bot infection. The Botnet risk is not limited to home users on cable-modems as corporate networks are already Bot infected. Criminal hackers prefer corporate systems that are more likely to remain online 24x7. URL Filtering helps recognize, identify, and remove infected systems; eliminating the risk that corporate resources will participate in SPAM distribution, DDOS attacks, or unwittingly host illegal content.

The service should be deployed at every Internet access gateway. Deployment at the gateway assures that traffic routing to the Internet is reviewed and adheres to defined policy. Virtela excels in such designs as our Regional Policy Centers (RPC) offer highly efficient deployment of URL filters within the Wide Area Network (WAN) cloud. This design consolidates the Internet gateway of multiple regional sites and maximizes the investment in hardware and services. Hardware deployment on premises is also available to accommodate more highly customized configurations at specific sites.

Key Benefits:

  • Intuitive Internet access categorization and filtering
  • Internet resource control
  • Perpetual tracking and updates against the ever-growing list of Internet sites
  • Identification and alerting against Bot infected systems
  • Control of IM and Peer-to-Peer traffic and applications
  • Automated application of applicable vendor patches and updates

Virtela's Web Filtering service provides intuitive URL category filtering as well as security protections against malicious websites and Botnets. Services are maintained in real-time to assure the rapid identification and blocking of newly provisioned malicious websites, as well as links to those websites and/or distribution of malicious code through peer-to-peer software.

Sample design of a premise-based Web Filtering solution.

managed-url-filtering

 

Related Resources

FAQs: Extending Defense-in-depth into the Cloud (PDF)
Podcast: Extending Defense-in-Depth into the Cloud (MP3)
Analyst Report: A Case for Unified Network Security Outsourcing (PDF)