Centralizing protection for all units in a network or parts of a network reduces the efforts for the administrator, and provides protection from malicious code in the network, whether it is resident or introduced from an external source. Norman Network Protection (NNP) aims at delivering such a solution, protecting both servers and clients in the network. This solution offers a strong advantage over conventional proxy solutions. What is Norman Network Protection? Norman Network Protection (NNP) is a new generation high-performance security gateway to protect organizations' infrastructure in real-time against malware attacks. The NNP technology is very simple to implement. Connect the NNP machine to the LAN and start the NNP executable, and the entire LAN is protected. NNP is independent of network topology and other network units. It is also effectively transparent to all other entities in the network, which allow them to operate uninterrupted by NNP. This gives a great advantage compared to conventional proxy solutions where network entities may require configuration to enable the proxy. Deployment: Multi-segments NNP can be configured between the Internet and the local network. Every computer on the network side of NNP is protected, and downloaded malware are stopped before they reach their destination. Scenario for a larger network with distributed Norman Network Protection boxes. All data traffic between all segments in the network are scanned for malware in real time. Click here to view larger image Deployment: Manufacture environments NNP can be configured between different network segments. This is especially useful for manufacturing companies with computer-run production machines. Network segments responsible for running production machines are often run without virus protection to ensure a smooth operation of the sensitive machines. Robots in manufacturing environment need to get updates from SAP or other systems to make deliveries “just in time”. To get ordering- and shipping information, supplier and sub-supplier information and other information in to the system fast and efficient these environments must be opened to the internet. NNP is a perfect solution to be used to protect these environments especially when there in many cases not is an option to have CPU intensive security software on the robots itself. Click here to view larger image Deployment: Small office network The usual method of connecting a network to the Internet is through a “gateway” server. All requests to the Internet from the network clients are then seen to originate from this gateway server. Traffic from the Internet to the client is also seen to originate from this server. By placing the NNP machine between the gateway and the LAN, it protects the entire LAN from malicious code entering from the Internet. NNP protecting a small office Click here to view larger image Deployment: Wireless Wireless networks are more and more beng used by many businesses  and other organizations – either as part of their operation networks for employees and/or as a guest network.  NNP enables all traffic to and from the network to be controlled. NNP can also be configured to only let specific traffic pass trough the unit e.g. web traffic (http) all other protocols are blocked. NNP deployed in a wireless network environment Click here to view larger image Deployment: DMZ DMZ (demilitarized zone) is a computer host or small network inserted as a "neutral zone" between an organization's private network and the outside public network. It prevents outside users from getting direct access to a server that has company data. Customers often configure web, ftp and email servers on to these segments. Machines are out in these grey zones can easily get infected by virus or other malware because they are less protected than other segments. NNP will be an extra security for this segments inspecting traffic to and from the DMZ. When machines are out in these "grey zones" they can easily get infected by virus or other malware because they are less protected than other segments. NNP will be an extra security for this segments inspecting traffic to and from the DMZ. Click here to view larger image Deployment: Server- and other high speed segments NNP is designed to have limited latency and can be configured to protect critical segments in the networks. NNP avoids this problem since it does not hold back more data than necessary. It takes a few packets from the stream and reassembles them locally as a file. When the scanner receives the requested amount of data, the packets are duplicated in NNP and the originals are passed on. The stream is scanned as it passes through the system, and as soon as something malicious is found, it is stopped. NNP is transparent to the network operation and requires no network adaptation and very little maintenance to keep running. Since NNP works on the packet level, the system has full control over the network flow. Scenario for a configuration were NNP protects a server park. Note: High traffic can result in two or more NNPs being needed, split on incoming and outgoing traffic, or on different protocols. Click here to view larger image