Hi Folks
We have UTM firewalls at the internet edge that has the inbuilt capability for URL filtering and web security. All the web traffic from LAN is sent to the firewalls using inline and explicit proxy modes. Currently, it has no DNS security or backend database to keep track of what’s good vs bad.
We are evaluating the Cisco umbrella solution.
From our perspective, ultimately we can have URL filtering on the UTM as long as it already has web security features and granularity such as SSL decryption and then we use umbrella solution for DNS security preventing internal hosts/servers from being able to do external name resolution for malicious sites from working
With that being said, I'm not sure if we are doing the right thing
What do you think?
No comments:
Post a Comment