IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

M86 Security Secure Web Gateway 5000 review

The Secure Web Gateway 5000 delivers a unique range of web security measures with real-time content inspection amongst its defences. In this exclusive review we find out just how tough it is.

Price
£4,792

As web threats get ever more sophisticated businesses need to take a more proactive stance if they are to successfully defend against them. M86 Security offers a range of web security solutions and its latest Secure Web Gateways have a number of unique capabilities designed to target and eliminate the most devious of attacks.

On review is the Secure Web Gateway (SWG) 5000 appliance which is aimed enterprises looking for high performance malware detection. This 1U rack server looks up to the task as it's a quality IBM System x3550 system equipped with a pair of quad-core Xeons and fast DDR3 memory.

Installation in the lab was swift as we connected a local monitor and keyboard and used the wizard based CLI setup. During this phase you select the operational mode and we chose the all-in-one option. You can also deploy multiple appliances which provide scanning services with all reporting back to a central policy enforcement server.

The appliance defaults to an explicit proxy so you can change your client browser proxy settings using group policies or PAC scripts. The SWG 5000 can also operate transparently but it will still be necessary to redirect traffic to the appliance for scanning.

It's worth taking a closer look at the features offered by M86 that make the SWG appliances so unusual. At the top of the list is M86's patented active real-time content inspection which is designed to identify malicious code and block it.

Rather than use the more common sandbox method to run suspect code, the appliance examines the code to see what it would do. It checks it through to completion and if it doesn't like what it's doing then it blocks it.

The Anti.dote feature provides protection in the period between a new threat being identified and a patch being made available. When M86 spots a new threat, it downloads a custom rule set to the appliance allowing it to detect and block it during this phase.

Spyware protection uses a combination of behavioural analysis and known spyware URL lists. Optional anti-virus measures are offered by M86 and you can choose between Kaspersky, McAfee or Sophos.

There are more options as URL filtering via Websense or IBM's Proventia is on offer. M86 plans to offer its own solution based on the 8e6 service it acquired last year. HTTPS scanning is also another optional feature.

Featured Resources

Four strategies for building a hybrid workplace that works

All indications are that the future of work is hybrid, if it's not here already

Free webinar

The digital marketer’s guide to contextual insights and trends

How to use contextual intelligence to uncover new insights and inform strategies

Free Download

Ransomware and Microsoft 365 for business

What you need to know about reducing ransomware risk

Free Download

Building a modern strategy for analytics and machine learning success

Turning into business value

Free Download

Recommended

Ten ways to protect your company from the next big data breach
data breaches

Ten ways to protect your company from the next big data breach

18 Feb 2022
Gumtree site code made personal data of users and sellers publicly accessible
data protection

Gumtree site code made personal data of users and sellers publicly accessible

16 Dec 2021
Pizza chain exposed 100,000 employees' Social Security numbers
data breaches

Pizza chain exposed 100,000 employees' Social Security numbers

19 Nov 2021
83% of critical infrastructure companies have experienced breaches in the last three years
cyber security

83% of critical infrastructure companies have experienced breaches in the last three years

11 Nov 2021

Most Popular

Russian hackers declare war on 10 countries after failed Eurovision DDoS attack
hacking

Russian hackers declare war on 10 countries after failed Eurovision DDoS attack

16 May 2022
Windows Server admins say latest Patch Tuesday broke authentication policies
Server & storage

Windows Server admins say latest Patch Tuesday broke authentication policies

12 May 2022
IT admin deletes company’s databases and is jailed for seven years
Policy & legislation

IT admin deletes company’s databases and is jailed for seven years

16 May 2022