Security zones························································································································································ 56 Time ranges···························································································································································· 58 Services ·································································································································································· 60 IP addresses ··························································································································································· 65 Interzone rules························································································································································ 72 Interzone policies ·················································································································································· 76 Interzone policy applications ······························································································································· 80

Firewall device management········································································································································ 83 Managing firewall devices··································································································································· 83 Viewing device statistics······································································································································· 85 Managing the device configuration database··································································································· 85 Managing deployment tasks································································································································ 91

SSL VPN auditing·······················································································································································93

Comprehensive analysis················································································································································ 93 Online users ··························································································································································· 93 Online users trends················································································································································ 94 Daily user statistics ················································································································································ 94 Device monitoring ················································································································································· 95

SSL VPN log auditing ···················································································································································· 96 User access records auditing ······························································································································· 96 Operation log auditing········································································································································· 96 Resource access auditing ····································································································································· 97 Authentication failure auditing····························································································································· 97

Configuration example 1 ··········································································································································99

Network requirements ··················································································································································· 99 Configuration procedure··············································································································································· 99 Adding devices to the firewall manager············································································································· 99

Configuration example 2 ······································································································································· 101

Network requirements ·················································································································································101

Configuration procedures ···········································································································································101

Configuring the firewall device··························································································································101 Configuring the Firewall Manager ····················································································································102

Configuring intrusion detection in firewall and sending logs to Firewall Manager·····································103 Verification····································································································································································107 Firewall logs and Firewall Manager analysis ··································································································107

Support and other resources ·································································································································· 111

Contacting HP ······························································································································································111

Subscription service ············································································································································111

Related information······················································································································································111 Documents····························································································································································111 Websites·······························································································································································111 Conventions ··································································································································································112

Index ········································································································································································ 114

ii

Page 3 Page 5
Page 4
Image 4
HP Firewall manual
Page 3 Page 5

Firewall specifications

HP Firewall, often positioned as a key component in enterprise network security, is designed to protect sensitive data and maintain secure communications across various environments. The primary role of a firewall is to monitor incoming and outgoing network traffic and make decisions based on a set of security rules. HP Firewalls utilize a combination of hardware and software to create a robust security framework that helps organizations manage their network perimeter effectively.

One of the main features of HP Firewall is its advanced security protocols that provide deep packet inspection. This technology scrutinizes packet contents beyond the header information, analyzing data flows for signs of malicious activity. By employing Stateful Inspection, HP Firewalls maintain a state table that logs active connections, allowing the firewall to evaluate packets in the context of established sessions. This helps optimize resource usage while delivering high-performance security.

Another characteristic of HP Firewall is its integration with HP's broader security ecosystem. By working seamlessly with other HP security products, such as HP Secure Access and HP Advanced Malware Protection, organizations can deploy a multi-layered security strategy. This integration enables centralized management, streamlining security policies and improving response times against threats.

HP Firewalls also feature next-generation capabilities. This includes intrusion prevention systems (IPS) that actively monitor network traffic for suspected threats and automatically take action to block potential breaches. Additionally, these firewalls come with application awareness features, allowing organizations to enforce policies based on specific applications rather than simply based on port or protocol. This granularity enhances control over minimal use of bandwidth while simultaneously mitigating risks from unwanted applications.

Furthermore, HP Firewall models are equipped with user identity management, allowing organizations to apply security policies based on user roles and the specific needs of the business. This significantly improves the overall security posture as it adds another layer of control.

Scalability is a notable characteristic of HP Firewalls, making them suitable for both small businesses and large enterprises. Organizations can expand their security infrastructure as needed while maintaining efficiency.

In summary, HP Firewalls deliver advanced security features, scalability, and seamless integration within the HP security ecosystem. Their emphasis on deep packet inspection, real-time monitoring, and user identity management make them a powerful asset in the defense against cyber threats, ensuring that organizations can protect their critical data and maintain the integrity of their network environments.
Top Page Image Contents