Secure Migration to the Public Cloud and Hybrid Environments
When migrating workloads to the Public Cloud, organizations need to consider “The Shared Responsibility Model”, where the cloud providers are responsible for the security of the cloud infrastructure, while organizations are responsible for the security of their data and applications in the public cloud.
Leveraging the Public Cloud also brings new requirements in terms of network performance, connectivity, and manageability. In the cloud era, network firewalls must do more than secure your network, they must also ensure you have uninterrupted network availability and robust access to cloud-hosted applications.
- Consistent security posture on-premises and in the cloud
- Network segmentation for security and compliance
- Advanced, platform-independent Cloud-to-Cloud connectivity
- Tight integration with Cloud-native features
- Cloud-ready consumption models
Network Segmentation in the Public Cloud
Segmenting networks into multiple network tiers provides security, visibility, and compliance for applications hosted in the public cloud. For compliance reasons, workloads, such as database servers that hold sensitive data might need to be hosted on-premises, while application servers or web servers can be hosted in the public cloud.
Barracuda Cloud Generation Firewalls secure, restrict and monitor the communications between these tiers, while limiting the potential damage to an organization in the event of an attack. By filling in the gaps between cloud infrastructure, security and a defense-in-depth strategy, Barracuda provides protection between the application and data layers.
Robust, Reliable Cloud-to-Cloud Connectivity
If all workloads co-exist in the same cloud infrastructure, connectivity of Virtual Private Clouds (VPC) is manageable, however, what if you need to use different cloud infrastructure providers like Amazon Web Services, Google Cloud Platform and Microsoft Azure, either at the same time?
Barracuda Cloud Generation Firewalls enable organizations to utilize cloud workloads simultaneously, even if hosted with different cloud infrastructure providers. Barracuda’s Secure SD-WAN technology and proprietary high-performance VPN protocol extension 'TINA' is available across cloud providers, as well as virtual and on-premises deployments. This effectively overcomes the limitations of traditional IPsec to ensure always-on connectivity across cloud infrastructure providers.
Seamless Integration with Cloud Native Features
The most popular cloud platforms each have their own unique features, capabilities, and benefits. Barracuda Cloud Generation Firewalls are deeply integrated with the public cloud eco-systems with functionality such as cloud-native automation and integration with the full suite of management and monitoring capabilities that constitute the public cloud eco-systems, these include technologies like Amazon CloudWatch, AWS CloudFormation templates, AWS Direct Connect, Azure Security Center, Microsoft OMS, and Azure ExpressRoute to name but a few.
Flexible, Cloud-Ready Consumption Models
Barracuda Cloud Generation Firewalls make security and connectivity economical regardless of your network architecture. On premises, they can be deployed as appliances or on virtual machines. In public cloud platforms, they can be deployed as licensed virtual instances (BYOL) or as license – free ‘Pay-As-You-Go’ and ‘Metered Billing’ that both scale elastically with your workload. Both ‘Pay-As-You-Go’ and ‘Metered billing’ give organizations the flexibility to pay for actual usage of their firewalls, based on hourly or throughput based billing respectively.