Virtual Next Generation Firewall


Protecting your virtual and cloud infrastructures

Protect your virtual and cloud infrastructures

Some of your most business crucial applications have been moved to your virtual infrastructre, a private cloud or perhaps even a public cloud.

With your applications your data has also moved from your local file servers to cloud storage solutions.

Just as in a physical infrastructure these applications and data must be protected agains hackers, malware and other cyber threats using robust and intelligent Next Generation Firewalls.

To help you protect your virtualized applications and data, Clavister offers the Virtual Next Generation Firewall, having exactly the same features and capabilities as the turn-key hardware appliances. The Clavister Virtual Next Generation Firewalls runs inside your cloud envirnoments and inspects and protects both traffic to and from internet (north-south) as well as the traffic between your virtual machines (east-west traffic). 

Highlights


Protecting Private, Public and Hybrid Clouds

Protect your virtual and cloud infrastructure using the Clavister Virtual Next Generation Firewall that offers the same features and capabilities as the physical one and runs on top of VMware vSphere, KVM and Microsoft Hyper-V.

  • Private Cloud
    Protect the on-premise cloud and secure intra-vm traffic.

  • Hybrid Cloud
    Protect the off-premise cloud and secure the inter-cloud communication.

  • Public Cloud
    Protect the public cloud and establish private islands on the inside.
Read More

Ready to Serve and ProtectReady to Serve and Protect

Clavister's Next Generation Firewalls combine enterprise class firewalling with application recognition and advanced threat protection features that puts you back in control of your network.

Not only will you be able to see and control how applications are being used in your network, you'll also be able to optimize your IT for productivity whilst ensuring that advanced threats, ransomware and DDoS attacks are managed proactively.

Download Solution Brief

Centralized Security Management

For enterprise customers and hosting providers, the challenge of managing security in large installations requires an easy-to-use, centralized and scalable security management solution.

Clavister InControl is our premium centralized management system, built to handle thousands of Clavister products in large networks.

Key Features

  • Reduces management costs & simplifies configuration
  • Simplifies device provisioning
  • Helps maintain regulatory compliance
  • Integrate with business and IT systems using APIs and SDKs.
Read More

Designed for Service Providers


Dedicated Virtual NGFWs

As a service provider you want to ensure that your customers protect their applications and data using powerful Next Generation Firewalling features, including Virtual Private Networks (VPN), Intrusion Prevention (IPS).

Instead of using your own infrastructure firewall and having that cluttered with thousands of policies to cater for all the individual needs by each tenant you want to offer dedicated virtual Next Generation Firewalls.

Clavister offers a resource efficient Virtual Next Generation Firewall that works on almost every type of hypervisor, including vmware, KVM and microsoft Hyper-V.

Benefits

  • Revenues instead of costs
    Offer dedicated Virtual Next Generation Firewalls and increase revenues instead a shared infrastructure firewall that oftens ends up as a cost without additional revenues.

  • Tenant isolation
    Provide dedicated Virtual Next Generation Firewalls for each tenant. Provisioning new tenant or decomissioning them is as easy as turning on or off a VM. No more lingering policies in your central infrastructure firewalls.

  • Resource Efficient
    The Clavister Virtual Next Generation Firewall is highly resource efficient and only requires a few houndreds of MB in storage, RAM and a single vCPU.

  • High Performance
    Even with modest resources the Clavister Virtual Next Generation Firewalls can provide multi-gigabit firewalling throughput. Additionally the integrated support for AES encryption instructions (AES-NI) available in Intel processors the VPN performance is blazing fast.

Features


The Clavister Next Generation Firewalls are highly versatile and offers great features to keep your network safe and protected against cyberthreats. Additionally, they also come with attractive value-adding features to help run your network smoother.

Connect

IPv4/IPv6

Routing

Dynamic Routing

Transparent Mode

WAN Load Balancing

DHCP

VPN

VLAN/sVLAN

Protect

Firewall

Antivirus

Antispam

IDP - IDS/IPS

DDoS Protection

GeoIP Policies

Optimize

Application Control

User Identity Awareness

Server Load Balancing

Bandwidth Control

Policy Scheduling

Manage

Centralized Management

Local Management

REST API

Reporting

Forensics

Alarms

Monitoring

Specification

Feature  NGFW-V2 NGFW-V3 NGFW-V5 NGFW-V7 NGFW-V9 NGFW-V10
Firewall Performance* (Gbps) 0,3 1 2 3 6 10
VPN Performance* (Gbps) 0,15 0,5 1 2 3 5
Concurrent Connections 16k 64k 128k 250k 512k 2M
Concurrent VPN Tunnels 25 500 1,000 1,500 3,000 5,000
Ethernet Interfaces Up to 3 Up to 4 Up to 6 Up to 8 Up to 10 Up to 10
Virtual Interfaces (VLAN 802.1q)** 8 32 256 512 1,024 2,048
Virtual Routers 5 25 50 100 200 1,024
Support for High Availability (HA) No Yes Yes Yes Yes Yes
Minimum Recommended RAM 256 MB 512 MB 512 MB 1 GB 2 GB 4 GB
Recommended Available Storage 256 MB
Number of vCPUs 1
Clavister cOS Clavister cOS Core
Intel AES-NI Crypto Acceleration Yes
Intel DPDK and SR-IOV Support Yes
Supported Hypervisors VMware vSphere, KVM, Microsoft Hyper-V
 
Industrial Certifications  
Certifications

* Actual performance depends on host/server-hardware, hypervisor and similar.
** Virtual Interfaces are not supported by Microsoft Hyper-V

Services

Clavisters service bundles are designed to help ensure that your Clavister products are kept up to date with the latest security threats and that you get excellent assistance from our attentive support team.

The services are purchased in either 12, 24, 36, 48 or 60 months bundles.

CPS

Clavister Product Subscription

CSS

Clavister Security Subscription

Technical Support

Access to technical support 24 hours per day, 365 days per year

Software Maintenance

Access to both minor and major software upgrades

Centralized Management

Access to Clavister InControl, our centralized management system.

Antivirus

Access and updates of new virus definitions.

Antispam

Access to our spam reputation feeds.

Intrusion Detection and Prevention

Access to new threat signatures.

Web Content Filtering

Access to the cloud based URL categorization service.

Application Control

Updates of application recognition decoders

IP Reputation

Access our IP Reputation feed

 

Read More

Resources

Download product datasheets, videos, white papers and more.

Datasheets

Clavister Virtual Next Generation Firewalls EN | DE
Clavister InControl - Centralized Management EN 
Clavister InControl - API/SDK EN 

Feature Spotlights

Next Generation Firewalling EN
Application Control EN
User Identity Awareness EN
Server Load Balancing EN
WAN Load Balancing EN
L2TPv3 EN
Service VLANs EN

Videos

Government  
True Next Generation Firewall  
 Cybercrime and Ransomware  
Protect against DDoS attacks  
More videos  

Whitepapers

Virtualization and Cloud Security ENDE | CN
Has Prism scattered trust in IT security? EN
DoS and DDoS Protection with Clavister EN | DE | SE
 More though leadership articles on Clavister DeCrypted News   

Take the Clavister NGFW on a testdrive

Try out the web interface of a Clavister Next Generation Firewall right here and now.

Click here or on the picture below and login using the username: demo and password: demo

 

Free Trial

Create My Clavister Account

Free 30-day trial

What are You Waiting For?

Download free trial or contact us for more information.