Secure Network as a ServiceInternet AccessSASE SD-WANManaged Network ServicesCasesAboutPrice calculatorContact
info@ipknowledge.net
088 088 2600
White arrow icon
Book consult
Home
Solutions
Secure Network as a Service
Internet Access service icon
Internet Access
SASE SD-WAN service icon
SASE SD-WAN
Managed Network Services service icon
Managed Network Services
Cases
About
Contact
Price calculator
Book a consult
EN
Knowledge Center
Knowledge Center

What are the key features and functionalities of Layer 7 firewall and LAN Segmentation in Cato Cloud's network security architecture?

Reading time:

5 min.

Back to Knowledge Center
Book a FREE consult now

We'd love to give you a full tour of our solutions.

Book a FREE consult

Published on:

September 30, 2024

Layer 7 firewall is supported, for any traffic passed to the Cato Cloud.

The inspection takes place at the ingress PoP, providing full application awareness firewalling, URL filtering, IPS and advanced anti-malware.

LAN Segmentation: Cato NGFW supports the definition of LAN segments as part of the site context.

Cato supports several types of LAN segments:

  • VLANs - VLAN tags are stripped as packets enter the Cato Cloud, then upon reentering the LAN the VLAN tag is re-applied
  • Routed Range - LAN segments that are connected through a router into a Socket
  • Direct Range - LAN segments that are directly connected to the Socket, not via a router, and are different than the site's native range By definition, no traffic is allowed between different segments. Allowing such connections requires the creation of local segmentation rules, enforced by the Cato Socket, or the creation of WAN firewall rules that are enforced by the Cato Cloud with full inspection of the traffic.

Written by:
Henk Jelt Hoving
Book a demo now

We'd love to give you a full tour of our NaaS solutions.

Book a demo now
More articles on:

SASE SD-WAN

How is a site survey conducted for Internet Access?

How is a site survey conducted for Internet Access?

Read article
What is Edge Computing and How Does it Relate to 5G?

What is Edge Computing and How Does it Relate to 5G?

Read article
Internet access without complications

Internet access without complications

Read article
Contact us

Can't find the answer?
Ask us directly.

We've build a huge library with all there is to know about IT networks and security. If you're looking for some deep information, than this is the place to be.
Reach out to us

What we promise

Monthly trails & demos
You're always up-2-date
We're here to help, 24/7
We're always down to business
Ask and we'll answer
Seamless site integration
Simple solutions for big problems
Monthly trails & demos
You're always up-2-date
We're here to help, 24/7
We're always down to business
Ask and we'll answer
Seamless site integration
Simple solutions for big problems
Calculate
Curious what a SASE SD-WAN network might cost?
White checkmark icon
We are transparent about our cost.
White checkmark icon
Receive a tailor-made quote within 2 days.
Calculate now
Reach out
Do you have any questions we can help you with?
White checkmark icon
We’re available Monday to Friday from 09:00 - 17:00.
White checkmark icon
Schedule demos, testdrives or a face-2-face meeting.
Get in touch!
White arrow icon
Knowledge unlocks IT-power
Company
SolutionsCasesAboutEventsContact
Resources
Price calculatorKnowledge CenterBook a FREE consultWhitepapers
Support
CareersFAQTerms & conditionsPrivacy & cookies
Feel like talking to us directly? We got you.
info@ipknowledge.net
088 088 2600
©2024 IPknowledge. All rights reserved.