GoAnywhere MFT Gateway

Also known as Secure Proxy Gateway or Secure File Gateway

A Secure File Gateway helps keep your sensitive files out of the DMZ, while protecting the private network. It is one of the keys to helping you meet compliance requirements, including those for HIPAA, PCI DSS, SOX, GLBA, or applicable privacy laws.

What is MFT Gateway?

 

GoAnywhere’s MFT Gateway provides an additional layer of security when exchanging data with your trading partners. It allows you to keep file sharing services (e.g. FTP/S, SFTP, HTTP/S servers) and documents safely in your private/internal network. With GoAnywhere’s Secure File Gateway, no inbound ports need to be opened into your private network, which is essential for compliance with PCI DSS, HIPAA, HITECH, SOX, GLBA and state privacy laws.

MFT Gateway Features

GoAnywhere’s secure file gateway provides the extra layer of protection for your file sharing services by:

  • Not allowing incoming ports to be opened into the private network, which reduces the risk of intrusion
  • Not storing sensitive data files in the DMZ
  • Keeping user credentials, certificates, and keys safely in the private network
  • Supporting FTP/S, SFTP, SCP, HTTP/S and AS2 file transfer protocols
  • Hiding the locations and identities of internal systems
  • Not requiring any special hardware components; it is a software-only solution

Start a Free Trial

Why GoAnywhere MFT Gateway as Your Proxy Gateway?

Alongside GoAnywhere Managed File Transfer, Gateway provides IT teams with many benefits:

Secure inbound ports to your network

Your file servers (e.g., FTPS, SFTP, HTTPS, and AS2) can be kept securely in your internal network with GoAnywhere's secure file gateway. This allows you to keep inbound ports to your network closed, which is essential for complying with data security standards like PCI DSSHIPAA, HITECH, SOX, ISO 27000, and the GLBA.

Illustration of MFT Gateway

GoAnywhere Gateway Features At-A-Glance

No incoming ports need to be opened into the private network

User credentials, permissions, certificates, and keys are kept safe in the private network

Hides the locations and identities of internal systems

Services configurations are maintained/stored in the private network

Supports FTP, FTPS, SFTP, SCP, HTTP, HTTPS and AS2 file transfer protocols

Built-in load balancer to distribute workloads across multiple systems

In essence, when added to GoAnywhere MFT, GoAnywhere Gateway serves as a transparent interface between internal systems and external systems without exposing sensitive files or your private network.
 

More on How GoAnywhere Gateway Works 

Watch the Webinar: GoAnywhere Gateway

What benefits does GoAnywhere Gateway offer? How can you get the most out of a secure file gateway? See GoAnywhere Gateway in action alongside our Secure Mail and Folders modules in this recorded presentation:

Watch the Webinar

The GoAnywhere Gateway has also given us peace of mind by taking our customer data back into our private network where it is more secured.

Harrison Palmer, Tech Support, New England Document Systems

GoAnywhere MFT Gateway FAQs

MFT Gateway is an enhanced reverse and forward proxy that provides an additional layer of security for organizations when exchanging data with trading partners. With Gateway enabled, file sharing services, such as MFT, FTP/S, SFTP, HTTP/S, etc., can be kept safely inside your private network, without exposing sensitive data to your DMZ (Demilitarized Zone). And connections can be made to external systems on behalf of users in the private network.

With GoAnywhere Gateway, no inbound ports need to be opened into your private network, which is essential for compliance with PCI DSS, HIPAA, HITECH, SOX, GLBA and state privacy laws.

GoAnywhere’s MFT Gateway uses both forward and reverse proxy. With the reverse proxy, MFT Gateway masquerades as the same file sharing services for which it is front-ending. When trading partners want to exchange data, they connect to the MFT Gateway instead. Any additional data channels needed are then opened from the private network and through the Gateway, with no inbound ports needed.

With the forward proxy, GoAnywhere Gateway connects to external systems on behalf of users and applications in the private network. Routing these outbound requests through GoAnywhere Gateway allows you to more easily manage file transfers from your firewall. The forward proxy feature also adds security as it can hide the identities and locations of your internal systems.

GoAnywhere Gateway should be installed on a machine in the DMZ (demilitarized zone), which is the neutral zone between your organization's private/internal network and the outside public network (internet).

GoAnywhere Gateway can be installed onto Windows, Linux, IBM System p (AIX), UNIX, HP-UX, Mac OS, and Solaris platforms.

Yes. HelpSystems is a partner with VMware. GoAnywhere Gateway has been tested and verified to run in a VMware virtualized environment. GoAnywhere Gateway has been awarded the VMware Ready logo.

No. All GoAnywhere Gateway functions are server-centric.

GoAnywhere Gateway supports popular protocols including FTP, SFTP (FTP over SSH), FTPS (FTP over SSL/TLS), SCP, AS2, HTTP, and HTTPS.

Yes. A single installation of GoAnywhere Gateway can serve as a reverse proxy for multiple installations of GoAnywhere MFT. This allows you to simplify your network security while distributing file transfers over multiple servers.

Yes, but a Disaster Recovery license is discounted 50%. Maintenance is calculated at 20% of the net license price after the 50% discount.

Yes. You can download a fully-functional trial of GoAnywhere Gateway to evaluate its benefits within your own environment.

Interested in adding GoAnywhere Gateway to your cybersecurity solutions?

Start Trial

Gateway

Fortra's GoAnywhere Gateway »