Aruba Policy Enforcement Firewall

Next-generation role-based user, device and application policy enforcement firewall (PEF) provides automated Dynamic Segmentation functionality for wireless and wired access security in any Aruba environment. Available via Mobility Controllers, Gateways and APs in Instant mode.

Download the ArubaOS datasheet


Enforcing  access privileges to effectively reduce risk.

By enabling organizations to implement zero trust role-based access control, the Aruba Policy Enforcement Firewall has been designated “Cyber Catalystsm” by Marsh, based on its ability to effectively reduce risk.  
Read the PEF At-A-Glance


Security specifically designed for mobility and IoT.

Enforcing firewall rules at the point of connectivity provides a simple way to control user and IoT access anywhere within an environment and eliminates the cost and complexity of configuring VLANs, ACLs, and subnets at every hop in the network.
Read the PEF Tech Brief

Secure web filtering.

Control web surfing via URL, geolocation and IP reputation scores.Learn more about Aruba's WebCC bundle


Intelligent application visibility and control.

Built-in deep packet inspection allows PEF to see and classify over 3,000 applications for granular per app traffic enforcement. Simple wizard lets IT block, prioritize and limit bandwidth for individual or groups of apps.
Watch the Wi-Fi use case video


What is Aruba Dynamic Segmentation?

This is Aruba’s answer for real-time wireless and wired policy enforcement. We leverage the features within PEF and our ClearPass Policy Manager to deliver centralized and automated segmentation for any connecting device.
Learn more

Ready to learn more?

Contact Sales