Akamai's Prolexic network cloud firewall now offers the ability to customize access control lists and deploy them at network edges. Credit: CIS Content delivery network (CDN) and cloud security services provider Akamai Technologies has added a network cloud firewall capability to its cloud-based DDoS platform, Akamai Prolexic.The new feature is designed to allow Akamai’s customers to define and manage their own firewall rules and access control lists (ACLs) —lists of permissions for resources in a computer system or network —to streamline security for their network edges.“Eliminating bad traffic is possible because Prolexic sits between our customers’ networks and the internet, and shields applications and systems regardless of where they are deployed: on-premises, in a data center, a public cloud, hybrid cloud, or a colocation facility,” said Sven Dummer, the company’s product marketing director, in a blog post. Prolexic cloud network firewall will be added to Akamai Prolexic’s existing suite, which includes several different products and services — including Prolexic DDoS Protection, Prolexic Routed, Prolexic Connect, and Prolexic Site Shield — to offer various levels of protection against different types of cyberattacks including DDoS attacks, web application attacks, and bot attacks. Prolexic network cloud firewall expands DDoS protectionAn Access Control List (ACL) is made up of a list of entries that specify the access level of users, groups, or system processes to a specific resource. For instance, a file’s ACL may include entries for the file owner, individual users, or members of a particular group, each with its own permissions, such as read, write, execute or delete.Improvements to Prolexic network cloud firewall include the ability to define custom defenses to block malicious traffic, move rules to the edge, and the ability to adapt to network changes via a new user interface. “Custom, self-service access control lists (ACLs) and firewall rules are extremely helpful for many aspects of DDoS defense,” Dummer said. “More than 75% of today’s attacks are at least partially blocked by ACL mitigation posture when these rules were configured by our Akamai experts in collaboration with our customers.”The new capability, apart from allowing definition and adjustment of access control rules, also provides analytics for them. A user can choose to have Prolexic suggest ACLs based on its in-house threat intelligence data.Locating the new network cloud firewall at a network edge is a key benefit — it eliminates the need for intervention by various network-based firewalls and defense systems, since the cloud firewall’s position allows it to switch access off quickly and directly at the edges, according to Dummer.“Then even the conventional firewalls across your network will not see that blocked traffic anymore, because they, too, are now behind Network Cloud Firewall,” Dummer added.Recently, Akamai also has been building up its DDoS defense capabilities by investing in its global infrastructure. Earlier this month, for example, it announced two new “scrubbing centers” — data-cleansing stations where traffic is analyzed and malicious traffic is removed — in Chennai and Mumbai, to help Indian businesses guard against DDoS attacks. Related content brandpost Sponsored by Sans Institute Clock is ticking for companies to prepare for EU NIS2 Directive Many companies are still not ready for the impact of NIS2, but SANS can help them prepare. By Laura McEwan May 15, 2024 3 mins Security feature Backlogs at National Vulnerability Database prompt action from NIST and CISA A crisis at the key US service for ranking vulnerabilities has been fueled by short resources and an explosion of security flaws as the volume of software production increases. By John Mello Jr. May 15, 2024 10 mins Threat and Vulnerability Management Security Practices Vulnerabilities news FBI warns Black Basta ransomware impacted over 500 organizations worldwide CISA advisory includes indicators of compromise and TTPs that can be used for threat hunting. By Lucian Constantin May 14, 2024 6 mins Ransomware Phishing Healthcare Industry news Australian federal budget outlines investment in cybersecurity The Australian government announced its 2024-25 federal budget and CSO has selected highlights that indicate how much will go towards cybersecurity and in what areas. By Samira Sarraf May 14, 2024 5 mins Fraud Protection and Detection Software Data and Information Security PODCASTS VIDEOS RESOURCES EVENTS SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe