Best Practices

MFT Gateway

An MFT Gateway allows security administrators to shelter data in a private network to meet advanced compliance requirements.

What is a Secure File Transfer Gateway?

A gateway is a PC or appliance that plays a "man in the middle" role, exchanging authentication credentials, files, and other data between remote clients and a transfer server on the local private network. Gateways are frequently deployed to meet the advanced compliance requirements associated with data protection regulations such as HIPAA and PCI-DSS.

Why use an MFT Gateway Server? 

Gateways are intended to provide an extra layer of protection against attacks on the server by enabling it to be located on the access-restricted local private network instead of on the publicly accessible DMZ. The extra layer helps keep unauthorized parties from gaining information about and access to the server, the files on it, and the local private network. 

The MFT gateway server plays a "man-in-the-middle" role, exchanging authentication credentials, file, and other data between remote clients and a transfer server on the local private network. One advantage of this is that gateways do not store files in the publicly accessible DMZ—in contrast to DMZ-based file transfer servers.

Because gateways can add hardware, software, and operational costs, MOVEit Managed File Transfer by Ipswitch is often deployed in the DMZ, without a gateway server. However, Ipswitch Gateway can act as a proxy between inbound connections from the public network and your internal trusted network. Deployed in the DMZ network, it enables MOVEit Transfer to be deployed behind the firewall.

gateway network diagram

Try MOVEit Free for 30 Days