Security add-ons that go beyond the basics — antivirus, intrusion protection, vulnerability scanning & firewalls.

Every GigeNET server includes baseline DDoS protection and network security as standard. For environments that need more — regulated industries, public-facing applications, or anyone who'd rather prevent an incident than respond to one — these add-on services layer additional protection onto your existing infrastructure.

Anti-Virus + Ransomware Protection

GigeNET partners with ESET — one of the most established names in enterprise endpoint security — to provide real-time malware and ransomware protection for your server. ESET’s engine runs continuously in the background, scanning files and processes as they execute, blocking known threats and flagging suspicious behavior before it can encrypt or exfiltrate your data.

For businesses handling customer data, payment information, or proprietary systems, this isn’t optional hardening — it’s the baseline expected by most compliance frameworks and cyber insurance policies.

Powered by ESET
Your server
Real-time scanning active
app/uploads/invoice-2841.pdf
Clean
core/database/backup.sql
Clean
tmp/payload.exe
Blocked
var/log/access.log
Clean
Ransomware payload detected and blocked
Before file encryption or data exfiltration
Compliance baseline
Expected by most compliance frameworks and cyber insurance policies

Intrusion protection

An intrusion prevention system (IPS) sits inline with your traffic, continuously analyzing patterns for signs of known attack signatures and anomalous behavior — then automatically blocking malicious activity before it reaches your applications. This goes beyond a firewall’s “allow/deny by port” logic — IPS inspects the actual content and behavior of traffic.

GigeNET configures and tunes IPS for your specific environment, with alerting so your team knows what was blocked and why — not a black box that silently drops traffic with no visibility.

Firewall
Allow / deny by port — basic filter
↓ traffic that passed the firewall still gets inspected ↓
Intrusion prevention system
Inline — content & behavior inspection
GET /api/products — normal pattern
Allowed
SQL injection signature detected
Blocked
POST /login — normal behavior
Allowed
Alert sent
What was blocked, and why
Your application
Receives only clean traffic

Vulnerability scanner

Vulnerability scanning systematically checks your server against known CVE databases — outdated software versions, misconfigured services, open ports that shouldn’t be, and weak credentials. GigeNET runs scans on a recurring schedule and provides a prioritized report: what was found, how severe it is, and what to do about it.

This is the same type of assessment many compliance audits require — running it proactively means there are no surprises when an actual audit happens.

Recurring scan schedule
Vulnerability scan report
Jun 10, 2026
1
Critical
2
High
4
Medium
7
Low
Critical
Outdated OpenSSL version
Remote code execution vulnerability — update to 3.0.14 or later
CVE-2024-6119
High
SSH exposed on default port
Port 22 open to all sources — restrict by IP or change port
Medium
Weak password policy detected
3 accounts without enforced complexity requirements
Same assessment type compliance audits require
Run proactively, so there are no surprises when an actual audit happens

Firewalls (Hardware + Software)

Hardware firewalls sit at the network edge, filtering traffic before it reaches any of your servers — ideal for protecting multiple machines or a colocation deployment as a single unit. Software firewalls run on the server itself, giving granular, per-application control — useful when different services on the same machine need different rules.

Most environments benefit from both: a hardware firewall handling broad network-level rules, and software firewalls fine-tuning access at the server level. GigeNET can configure either or both as part of your setup — including the software firewalls available on request with every dedicated server.

Internet traffic
Hardware firewall
Network edge — protects all servers
:443 — HTTPS
Allow
:80 — HTTP
Allow
:3306 — MySQL exposed
Block
Web server
Software firewall
Allow
:443 nginx
Block
:8080 dev
DB server
Software firewall
Allow
:5432 local
Block
all external

Build your security stack around your actual risk.

Whether you need one of these add-ons or a full security review of your current setup, our team will help you prioritize — starting with what matters most for your industry and compliance requirements.

24/7/365
US-based support
100% uptime
SLA guaranteed
20+ years
Enterprise hosting
SOC 2
Type II certified