There’s a lot more to the appliance’s firewall than just stateful packet inspection as it is used to apply a range of custom filters and determine what anti-virus, anti-spam, intrusion protection and content filtering settings are applied. Filters are particularly versatile as each one can contain up to seven rules applied to selected services, port ranges, source and destination addresses, plus inbound or outbound traffic. To make life easier objects can be created for network address ranges, services and keywords and then used in rules to define groups such as departments. It could get complicated but you can even specify individual anti-virus, anti-spam and intrusion prevention profiles to be used within the rule.
For anti-virus measures up to eight profiles are supported with each one defining whether SMTP, POP3, IMAP, HTTP and FTP traffic should be scanned and what action should be taken if an infection is spotted. For anti-spam you have sixteen profiles where each defines POP3 and SMTP traffic scanning, tags for spam and bulk messages and black and white lists of keywords. Note that the appliance can only tag suspect messages, which will then need to be dealt with locally by rules in your email client. Anti-spam performance was pretty good as after running in a live environment for a week we saw it handle spam with an 85 per cent success rate.
(centre)”’Virus and intrusion protection signatures can be scheduled for regular downloads.”’(/centre)
For basic URL filtering you create lists of keywords and decide whether to block or allow access. It gets far more interesting with SurfControl in the mix as this offers over forty categories grouped under four main headings. You choose which ones you want to block and with up to eight profiles to hand you can create an extensive range of web access policies. These can also be associated with a time schedule object but it’s a tad tricky as this must be done within a filtering rule. SurfControl showed its mettle during testing as with the games and gambling categories blocked we tried to visit over forty on-line bingo sites and were stopped from accessing every one.
Draytek is offering a UTM appliance that’s very affordable for smaller businesses looking for a complete gateway security solution that won’t sting them with high yearly subscription rates. It’s easy enough to install and configure, performed extremely well during testing and the firewall filtering features make it extremely versatile.