Block incoming and outgoing connections to known malicious IPs to eliminate malicious activity before it reaches your data center
Guardicore’s Threat Intelligence Firewall is based on Guardicore‘s CyberThreat Intelligence (CTI), a service that offers unique information on malicious IP addresses and domains. These malicious assets are detected by Guardicore’s threat intelligence sensors, installed in multiple data centers, organizations and cloud providers worldwide.
To be up-to-date with the most recent threats, the list of known malicious IPs is updated daily. With this feature, Guardicore Centra is the only micro-segmentation platform to block traffic from malicious IP addresses identified through both its global network and local customer sources.
How Guardicore Threat Intelligence Firewall Works
Reduce risk in your data center and cloud
Drastically reduce your attack surface to malicious actors that attempt to attack, scan, or make a CnC connection out of your organization.
Leverage the power of the cloud
Leverage information gathered by sensors deployed in live production data centers and cloud deployments across the globe.
Early warning about a compromised environment through instant block
Instant notifications provide accurate and real-time information that a customer environment has been compromised, allowing faster response.
Up-to-date intelligence about the newest threats
Lists of malicious IPs are updated daily with the latest attack, scan, and CnC IPs.
Threat Intelligence Firewall Features
Daily updates on the latest attack, scan, and C&C threats
Daily updates on threats
Daily updates on threats
Lists of malicious IPs are updated daily with the latest attack, scan, and C&C IP addresses.
The Threat Intelligence Firewall is managed through Guardicore Centra’s segmentation rules dashboard, identifying and and blocking incoming and outgoing connections to known malicious IP addresses and domains
The Guardicore Threat Intelligence Firewall leverages data consumed from Guardicore’s Cyber Threat Intelligence feed, a publicly available resource tracking potential threats specific to data center and cloud infrastructure, eliminating false positives.
“Guardicore enables us to enhance our overall data center security strategy and help our IT security team to avoid today’s advanced threats.”
Marino Aguiar CIO, Santander Brasil
“Deutsche Bank is committed to the highest standards of security, and a high priority for us is implementing tight network segmentation in our on-premises and cloud environments. Guardicore gives us an effective way to protect our critical assets through segmentation”
Alan Meirzon Director, Chief Information Security Office
“Guardicore gives me the ability to immediately isolate process or connection-based anomalies and view them with unprecedented clarity.”
Michael Lamberg Vice President and Chief Information Security Officer
Discover the Threat Intelligence Firewall most frequently asked questions (FAQ).