OT Micro Segmentation
Clavister firewalls for industrial use provide the ideal solution for allowing direct secure connectivity between OT and IT networks. The firewall is configured to be very strict on the specific devices that are allowed on the OT side. The ARP Authentication feature allows authentication of devices and the ability to create specific rules and policies for the same.
Also the Clavister Next-Generation Firewall provides application validation and control functionality to apply policy rules on communication protocols. The user can specify that only protocols like Modbus, OPC or PROFINET, as an example of many, are allowed between segments. In this way it segments the network into zones to simplify policy management and reduce impact upon breach.
The firewall can be configured to allow for communicaiton only in one direction, towards specific IP addresses in the datacenter or cloud. This allows for useage and system status informaiton to be uploaded to the suppliers direclty who can perform preventive maintenance programs and redcue the risk of unscheduled outage.
Prioritize apps critical to
Limit access to entertainment or other non-critical sites
Block high-risk applications
The following use cases are included in this solution: