The cloud-native architecture of Lookout Cloud Firewall provides a comprehensive set of next-generation firewall capabilities through a single-pane dashboard. These capabilities include:

• Proxy-based architecture. Cloud Firewall design dynamically inspects network traffic for all users, applications, and devices. Capable of enforcing policies on any port or protocol. Cloud Firewall delivers always-on threat protection and coverage, regardless of connection type or location. It inspects all traffic on any port and protocol to provide full visibility into user, app, and internet connections.

• Visibility and simplified management. A cloud-based firewall delivers real-time visibility, control, and immediate security policy enforcement across the platform. It logs every session and uses advanced analytics to correlate events and provide insight into threats and vulnerabilities for all users. The single-pane dashboard allows administrators to monitor activity and analyze policy matches using dashboards and activity audit logs.

  The Lookout Cloud Firewall uses 5-tuple information to define and enforce policies for allowing or blocking network traffic. The 5-tuple includes source IP address, source port, destination IP address, destination port, and transport protocol. A 5-tuple uniquely identifies a UDP or TCP session.

  Notes

• The Lookout Cloud firewall configurations are applicable for traffic accessed through Lookout Client or Branch alone.
• The Lookout Cloud firewall configurations are not applicable for traffic accessed through reverse proxy or forward proxy mode.