Issue link: https://insights.oneneck.com/i/1469039
30 Secure Access Service Edge (SASE) For Dummies, Cisco Special Edition These materials are © 2020 John Wiley & Sons, Inc. Any dissemination, distribution, or unauthorized use is strictly prohibited. Secure web gateway (SWG) Cisco Umbrella includes a cloud-based proxy that can log and inspect all your web traffic for greater transparency, control, and protection. This includes: » Real-time inspection of inbound files for malware and other threats using the Cisco Advanced Malware Protection (AMP) engine and third-party resources » Advanced file sandboxing provided by Cisco Threat Grid » Full or selective SSL decryption to further protect against hidden attacks » Blocking of specific user activities in select apps (for example, file uploads, attachments, and posts/shares) » Content filtering by category or specific uniform resource locators (URLs) to block destinations that violate policies or compliance rules Internet Protocol Security (IPsec) tunnels, AnyConnect agents, proxy auto-config (PAC) files, and proxy chaining can be used to forward web traffic to Cisco Umbrella. Cloud-delivered firewall With Cisco Umbrella's firewall, all activity is logged, and unwanted traffic is blocked using IP, port, and protocol rules. To forward traffic, you simply configure an IPsec tunnel from any network device. Management is handled through the Umbrella dashboard, and as new tunnels are created, security policies can automatically be applied for easy setup and consistent enforcement throughout your environment. Cisco Umbrella's cloud-delivered firewall provides: » Visibility and control for Internet traffic across all ports and protocols » Customizable IP, port, and protocol policies in the Umbrella dashboard » Layer 7 application visibility and control