BNS Shielded Firewall
Keeps the firewall secure from malicious attacks. The BNS Firewall Shielding enhancement creates a hidden shielding to secure from: backdoor bypass, known vulnerabilities misuse, trojan horses, internal malware and more.
What is a firewall?
According to the Wikipedia:
Firewall is a network security system that monitors and controls incoming and outgoing network traffic based on predetermined security rules. A firewall typically establishes a barrier between a trusted network and an untrusted network, such as the Internet.
Who and how configures these predetermined security rules?
According to the Wikipedia:
A firewall is a network device that acts as a protective shield to your network by applying conditions given by the IT department. These conditions define what each rule will do, as well as what traffic is allowed or denied. This is why admins need to be cautious while working on firewall configurations, ensuring there are no errors while specifying these rules.
Faulty rules can create doorways through which malicious actors can carry out attacks. For instance, if an admin erroneously applies a rule that allows unwanted traffic, it can lead to unauthorized data transmission or a major network breach.
Is firewall like a hedgehog?
Very protected from outside,
fully opened from inside
Malware from internal network tries to map a firewall by sending series of messages (both by broadcasting and sending to known/discovered addresses). After the firewall replies to the “legal” request from authorized computer malware gets enough information to access the firewall management and to change the rules, e.g., to open the backdoors.
The firewalls indeed are hedgehogs!
How BNS Shielded Firewall protects this “soft underbelly” of hedgehog (firewall)
sBNS appliance is fully transparent in the network (has neither IP nor MAC addresses; adds just a few nanoseconds latency)
sBNS appliance avoids access to the management ports of firewall for everyone every time unless a predefined set of conditions has happened. Such conditions are defined by the authorized management and may include time of day when the management session occurs, duration of the session, special command sent from the mobile application and/or other device, HW address of the device which is trying to establish the management session, even one-shot address of the firewall that is provided by BNS Shielded Firewall for one management session.
In other words, there is no way to map the firewall from inside, even to define it’s type and it’s HW/SW versions.
sBNS appliance serves as a transparent shield for the firewall.
BNS Shielded Firewall features
- Application Control
- Web Filtering
- DNS Filtering
- Web Application Firewall
- Email Filter
- Endpoint control
- Explicit Proxy
- SSL VPN
- IPsec VPN
- SSL/SSH Inspection
- Traffic Shaping
- Hidden and Invisible firewall shielding
- SMS alerts in the event of a cybersecurity incident
- Enabling access to the firewall management to authorized admins by MFA (Multi-Function Authentication)
Additional features for premium package
- Shielding against external mapping
Optional advanced features
- Redirection to sandbox/honeypot
- Block selected communication channels
- Supports WBC (white Box Cryptography) secured tunneling
How much does it cost?
We offer a leasing model with an attractive monthly payment for the hardware components, management for the sBNS(Shielded BitNetSentry) appliance, and warranty. There is a requirement for a down payment for the first six months. Customers like our pricing thanks to low monthly cost and low total cost of ownership.
What’s in the bundle box?
The BNS Shielded Firewall bundle contains Fortinet firewall model per your choice, a single sBNS(Shielded BitNetSentry) appliance for the basic shielding and two sBNS appliances for the premium program, power adapters, and a cable set.
Who can configure and install the shielded firewall bundle?
The sBNS appliance is a plug & play module with remote management we provide as part of the monthly payment and the Firewall configuration can be done either by your professionals or by our partners for an additional cost to be paid directly to them.