Our Firewall Feature
Benu’s carrier-class firewall is protecting over 24M WLAN APs and the users behind them. Carrying over 7 Petabytes of traffic a day, Benu’s firewall software is field proven for nearly a decade of broad commercial deployment.
Traditional perimeter-only firewalls are effective for private enterprise deployments, but are not effective in deployments that have a large guest user base, such as in venues, MDUs, hospitality, retail businesses, and public WiFi networks. In all of these scenarios, there is a mix of trusted users (employees and staff), trust devices (Internet-of-Things), partially trusted users (vendors or suppliers), and untrusted users (guests).
For all these different types of users, even trusted users, Benu supports a zero-trust approach. Zero-trust security restricts users to only the parts of the network and applications that they need, thereby reducing the attack surface and minimizing access to sensitive parts of the network. Microsegmentation creates separate zones within the network to maintain separate layers of access to applications and network resources.
In addition, unlike typical firewalls, Benu’s SD-Edge platform supports per-user policy enforcement which is essential in environments with a high number of untrusted or partially trusted guests. These per-user policies include network access controls, QoS and rate limiting, content filtering, and data volume limits.