Skip to main content

Video: Multiple Ways to Route and Secure Internet Traffic

Abstract

This video shows how to control internet-bound traffic routing by User Group, Network, or Host, whether your organization needs to enforce strict control by completely blocking internet access and limiting access to private and trusted internet destinations or Tunnel all internet traffic from a connected network, application server, or remote user to one or more connected private networks.

This video shows how to control internet-bound traffic routing by User Group, Network, or Host, whether your organization needs to enforce strict control by completely blocking internet access and limiting access to private and trusted internet destinations or Tunnel all internet traffic from a connected network, application server, or remote user to one or more connected private networks. There are three levels of security for Internet Routing:

Level 1 Security is when we have Split Tunnel ON.

Level 2 Security: Split Tunnel OFF

Level 3 Security: Restricted Internet

Date published:

10/10/2022

Functionality covered:

Internet Access, Restricted Internet, Split Tunnel ON, Split Tunnel OFF, Internet Gateway

Description

This video explains how the traffic to private applications and the Internet is routed based on the Internet Access settings configured for User Groups, Networks, and Hosts.

With split tunnel ON, traffic to trusted internet domain names and IP addresses can be routed to CloudConnexa, while other internet traffic uses the local default internet route.

Split-Tunnel ON (Security Level 1):

  • Only traffic to trusted internet destinations is secured by tunneling through CloudConnexa; other internet traffic exits directly using local internet.

  • Cyber Shield Domain filtering is effective.

  • Cyber Shield Traffic filtering, while not being used at full potential because all the monitored traffic is trusted, can still be effective because it can detect and block malicious traffic from a compromised endpoint.

Split-Tunnel OFF (Security Level 2):

  • All traffic is tunneled and can be examined by 3rd party security solutions stack (for example, UTM, Secure Web Gateway, etc.) deployed in any of your private Networks acting as an internet gateway to CloudConnexa.

  • Cyber Shield Domain filtering is effective.

  • Cyber Shield Traffic filtering is effective.

Restricted Internet (Security Level 3):

  • All traffic to the internet is blocked except to trusted internet destinations, which are tunneled to CloudConnexa.

  • Cyber Shield Traffic filtering, while not being used at full potential because all the monitored traffic is trusted, can still be effective because it can detect and block malicious traffic from a compromised endpoint.

Length

04:11