What is Netskope's Cloud Firewall?

Netskope has recently announced updates and enhancements to its SASE portfolio, including its new Netskope Cloud Firewall. In this blog post we break down Netskope’s Cloud Firewall and how it could benefit your organisation as well as some of the other exciting updates from Netskope.


The Netskope Cloud Firewall (CFW) is a firewall-as-a-service offering that helps reduce complexity, lower overall operational expenses, prevent a degraded user experience, and accelerate time-to-value for organisations transforming their security and networking to meet the demands of branch offices and a remote-first workforce.


Netskope Cloud Firewall is fully integrated into the Netskope Security Cloud and offers:

  • Network security for all outbound ports and protocols for safe, direct-to-internet access using the Netskope client on managed devices or via GRE and IPSec tunnels for offices.

  • 5-tuple policy controls, user and group IDs, FQDNs, and wildcards for egress firewall settings, plus seamless FTP ALG support, and full logging (TCP, UDP, ICMP) with event export.

  • Centralized access control, providing simplified management for users and branch offices using one console, one policy engine, and one security platform.

  • Netskope Security Cloud integrates CFW with SWG, CASB, and ZTNA solutions for users and offices, to provide protection to all ports and protocols.

This is not only a new cloud native service which is unified into the Netskope platform under the same console but also uses the same Netskope client footprint, which is used for CASB, SWG and ZTNA for managed devices. It also uses the same branch office steering options used by CASB and SWG.




What are the key benefits?