Global leaders are coming to Zenith Live. Are you? Learn More
Global leaders are coming to Zenith Live. Are you?
Learn More
Products > Cloud Firewall

Simplify your network with
Zscaler Cloud Firewall

Full next generation firewall capabilities without
the cost and complexity of NGFW appliances

Watch Video

To benefit from cloud apps, break free from network security appliances and go direct

Securely embracing the cloud and delivering a fast user experience requires local internet breakouts. But, securing internet traffic with traditional UTM and NGFW appliances requires deploying stacks of security appliances in all locations, which is cost prohibitive and extremely difficult to manage.

UTM/NGFW appliance sprawl
  • Cost prohibitive to deploy
  • Creates appliance sprawl
  • Untenable to manage
  • Compromises branch security
  • Performance degrades with SSL inspection and cloud apps with long-lived connections
Relying on UTM and NGFW appliances to secure internet traffic is costly, results in appliance sprawl, and compromises branch security.

Cloud Firewall Solution

Zscaler enables secure local breakouts – without appliances

Zscaler Cloud Firewall enables fast and secure local internet breakouts for all ports and protocols, without appliances. Cloud Firewall scales elastically to handle all your cloud application traffic, and is an integral part of the Zscaler Cloud Security Platform, which brings the entire security stack closer to the user to ensure identical protection no matter where they connect.

Read the Solution Brief
Relying on UTM and NGFW appliances to secure internet traffic is costly, results in appliance sprawl, and compromises branch security.
See Our Solution View the Challenge

Cloud Firewall product benefits

Transform with Zscaler.

Enables secure local internet breakouts

Provides direct to internet connections for a fast user experience, without any appliances to deploy or manage

Brings the entire security stack close to the user

Ensures identical protection for users from wherever they connect

Reduces costs and complexity

Optimizes MPLS backhauling spend and eliminates costly and time-consuming patch management, coordination of outage windows, and policy management

Scales services elastically

Handles SSL inspection and cloud application traffic requiring long-lived connections for a fast user experience

Provides security and access controls for internet traffic on all ports

Delivers firewall-as-a-service to provide security and access controls for internet traffic on all ports, not just 80 and 443, to prevent advanced threats

Logs every session and delivers real-time visibility and policy enforcement

Across all users, all locations, all applications, and all ports and protocols from a single console

“The next gen firewall capabilities are actually a core requirement. It was one of the primary considerations in selecting Zscaler. We hadn't found in any of the other cloud services that actually had a full protocol next gen capability."

Go from overall visibility to actionable information in real time

With Zscaler Cloud Firewall, apps are visible, regardless of port or protocol

Define and immediately enforce all policies for all locations from a single console

Easily create granular policies at the user, department, location, or application level

1.  HTTP/HTTPS traffic only on guest Wi-Fi
2.  Allow FTP for IT users only
3.  Block all P2P apps except Skype for Business
4.  Allow access to dynamic IPs based upon FQDN

Suggested Resources

Solution Brief

Zscaler Cloud Firewall

Read the Solution Brief 


Why your next gen branch firewall should be a cloud firewall

Watch Webcast 

Case Study

AutoNation and Zscaler

Watch Video 

The SC Awards’ Winner (2016)—Best Cloud Computing Security

Zscaler Cloud Firewall won the Best Cloud Computing Security Solution award by SC Magazine.