Dynamic Network Security: Enforcing Posture-Based Controls with Netzilo
Security teams are constantly challenged to ensure that only compliant devices access critical resources. Utilizing posture-based controls with Netzilo, organizations can easily manage network access between peers. This approach secures communication by applying predefined security policies.
Defining Network Access and Communication
Netzilo provides tools for configuring network access policies that control how peers are allowed to communicate. Within these policies, users can define either one-way or bidirectional communication between connected peers.
To achieve secure communication, security teams must apply posture checks to the overlay network. The ultimate goal is to ensure network access is granted only when devices meet required security standards.
Flexible Communication Policies
Netzilo enables security teams to configure network access policies with granular control, supporting both one-way and bidirectional communication patterns based on organizational requirements.
Granular Endpoint Security Controls
Netzilo allows for the selection of predefined posture checks or the creation of new ones under the endpoint security controls section. A foundational security requirement might involve enabling checks for both the device's antivirus and firewall. If either of these security measures is inactive on a device, network access will be denied.
Beyond basic firewall and antivirus status, posture checks offer granular control based on several other critical security factors:
Posture Check Capabilities
- Encryption Status: Restricting access based on whether the environment is encrypted
- Screen Lock: Checking whether the device's screen lock is enabled
- OS Updates: Restricting access based on whether the device's operating system is up to date
- Antivirus & Firewall: Ensuring both security measures are active before granting network access
Automatic Enforcement and Assurance
The demonstration illustrates the robust enforcement capabilities of this system. When security controls are activated (for example, both antivirus and firewall are enabled), the bidirectional overlay network allows communication between peers.
See posture-based network access controls in action
However, the power of posture-based enforcement becomes apparent when compliance fails. When a necessary security control, such as the antivirus, is deactivated, network access is automatically blocked. This is because overlay network communication is restricted instantly when the required security controls are inactive on a peer. Once the security control is reactivated, network access is restored immediately.
Real-Time Enforcement
When Controls Are Active:
Bidirectional overlay network allows seamless communication between compliant peers
When Controls Fail:
Network access is automatically blocked instantly, preventing non-compliant devices from accessing resources
Automatic Recovery:
Once security controls are reactivated, network access is restored immediately without manual intervention
By enforcing posture-based controls on overlay network access, Netzilo ensures secure communication is maintained only when devices meet the necessary security standards.
Ready to implement posture-based network controls?
Discover how Netzilo's dynamic network security ensures only compliant devices access your critical resources