• Home
  • The QTrust concept
  • Scailing + Fields of application
  • Version History
  • Family Comparison Chart
QTrust Family
  • Introduction
  • Decoupling
  • Unified Threat Management
  • High Security
  • PitBull

UTM - More than an application level firewall ...

UTM is a three letter acronym standing for Unified Thread Management. Lately this term is used to describe firewall systems which do a lot more than just implementing a stateful packet filter.

This term fits the QTrust Server perfectly as he overshoots the common features of a firewall system by far. Grown up over years out of the daily requirements of different companies he is configured via one single web-based administration interface. The QTrust Server can be smoothly integrated into established security processes by assigning different roles to several users. The range goes from simple status queries via maintenance, documentation and backup of the configuration up to administration of every security module.

As a matter of course the QTrust Server being the gateway between internet and intranet protects secured networks from prohibited connections with its statefull inspection firewall which still is clearly manageable after having lots of networking segments attached using Drag&Drop. The packet filter is enforced by the integrated Intrusion Detection System (IDS) which identifies and logs well-known attacks to merge conversations of evidence at a central point.

Additionally the protocols HTTP, HTTPS, FTP, DNS and SMTP are scanned on the application level. This means in detail:

  • Virus scanner as well as detection of trojan horses and other malware receiving email or surfing the internet
  • SPAM filter with adaptive learning which can be integrated into every mail system (Microsoft Exchange, Lotus Domino, OpenExchange, Postfix, ...)
  • Phishing and content filter to block prohibited internet sites during work schedule
  • DNS sortlists to differ between internal and external requests
  • Individual protection of web server farms (i.e. SQL-Injections, Cross-Site-Scripting)
  • HTTP URL encryption to conceal web application functionality
  • HTTP form name scrambling to prevent web applications to be brute forced by bots
  • Integrated statistics and reports for a clear examination of the internet usage

Different Virtual Private Networking (VPN) protocols for remote access of notebook users or a secure crosslink between headquarters, branches and home offices are a groundwork for international business. Supported protocols are:

  • IPSec: customizable standard compatible to all established versions of well-known vendors
  • OpenVPN: SSL/TLS based VPN to connect Windows, Mac-OS and Linux based clients even out of unknown corporate networks
  • PPTP: deprecated VPN standard for a smooth change to modern and more secure VPN protocols
  • VTun: Precursor of OpenVPN and established protocol to connect branches out of complicated or restricted network architectures

To top the feature list off the QTrust Server has its own self-developed and intelligent update mechanism which allows to patch latest security issues independently from other vendors using manual or automatical setup. This way the QTrust Server stays up-to-date with the latest security flaws.

Read more: High Security


PDF