CyberGuard Firewall is a dynamic packet filter, (stateful inspection) and application level proxy firewall that is provided with a MLS (secure) Unix operating system. It safeguards information held on internal networks, by controlling the access of external users and protecting the integrity, availability, authentication data and anonymity of the internal network. Configuration and reporting is performed with a local Graphical User Interface (GUI). Additional network interfaces (up to 32) provide DMZ or further internal/external network connections. Evaluated security features include: Connection level Access Control for IP packets; Accounting, auditing and statistics; Alerts for security events; Network Address Translation and Split Domain Name Server (DNS). The firewall runs on either single or multi-processor Intel IA-32 proceessors and also as complete packaged solution - the CyberGuard Premium Appliance family featuring: FireSTAR, KnightSTAR and STARLord.
The CyberGuard Firewall for Unix Ware/Premium Appliance Firewall was certified to EAL4 in December 2000 under the UK's Information Technology Security Evaluation Certification (ITSEC) Scheme. The CyberGuard Firewall is also covered up to and including release 5.2 as a member of the UK Assurance Maintenance process. As the AISEP has a Memorandum of Understanding with the UK that covers the Assurance Maintenance process, the AISEP recognises that releases up to and including version 5.2 have maintained the EAL4 level of assurance. See the Assurance Maintenance Status Summary [545KB] for further details.