prevention

Review: ActiveScout

Review: ActiveScout

The ActiveScout appliance is a very basic intrusion prevention system that uses behaviour, not signatures to address a possible attack. It will identify whether the network is being scanned and then attempt to block the potential intrusion.
Peter Stephenson,CeRNS, May 1 2006 12:00AM Security
Review: Ally ip100

Review: Ally ip100

We were amazed at what this little product could do and how strong it was. When it first arrived, we did not believe that this little piece of plastic could be a functional IPS. We were wrong.
Peter Stephenson,CeRNS, May 1 2006 12:00AM Security
Review: FortiGate-300A

Review: FortiGate-300A

The FortiGate-300A is a fullfunction front-end system for protecting a network in a way that goes far beyond intrusion prevention. It also has a built-in firewall and anti-virus protection as well as web filtering. Each port on the unit can be firewalled with specific rules and policies, allowing protected VLANs and isolated networks to be created.
Peter Stephenson,CeRNS, May 1 2006 12:00AM Security
Review: InstaGate PRO

Review: InstaGate PRO

The InstaGate has several interesting features. It can become more than just a firewall and IPS, as eSoft offers different software extensions, called SoftPaks. These include anti-virus, web filters, and IM and peer-to-peer filters. Apart from being an all-in-one device, it has a range of customisable reports and alert logs. It also includes several real-time monitors and keeps track of all internal and external activity.
Peter Stephenson,CeRNS, May 1 2006 12:00AM Security
Review: ipANGEL

Review: ipANGEL

This device features real-time vulnerability discovery on the network and can tune and adapt its policies for the best protection. As it learns more about the network, it customises its defences for the environment.
Peter Stephenson,CeRNS, May 1 2006 12:00AM Security
Review: Nortel Threat Protection System

Review: Nortel Threat Protection System

The Nortel Threat Protection System runs on a Sourcefire platform, something that surprised us. The product is a flexible system composed of multiple sensors and a management console.
Peter Stephenson,CeRNS, May 1 2006 12:00AM Security
Review: Reflex IPS100

Review: Reflex IPS100

Reflex’s IPS100 is loaded with features. It gives a thorough inspection to all network traffic, and can also be used to filter certain traffic. The device operates inline and examines for both external as well as internal threats.
Peter Stephenson,CeRNS, May 1 2006 12:00AM Security
Review: Sentivist Real Time Threat Protection System

Review: Sentivist Real Time Threat Protection System

NFR is one of the pioneers in intrusion detection and prevention, and its pedigree shows in this product.
Peter Stephenson,CeRNS, May 1 2006 12:00AM Security
Review: Sourcefire 3D IPS1000

Review: Sourcefire 3D IPS1000

The Sourcefire box does all the things an IPS should do. It fits comfortably in the category of an average IPS, although it must be remembered that the Sourcefire 3D Suite includes a ton of IDS, scanning, and vulnerability management capability which falls outside the context of this review. As an IPS, the box has no standout features, and nothing specifically separates it from other IPSs.
Peter Stephenson,CeRNS, May 1 2006 12:00AM Security
Review: TippingPoint 200E

Review: TippingPoint 200E

Since 200E is what we call a learning device, it requires a little time on the network to begin protecting assets.
Peter Stephenson,CeRNS, May 1 2006 12:00AM Security
Review: Top Layer IPS 5500-50

Review: Top Layer IPS 5500-50

This device incorporates several features in one box. It has real flexibility, with fully adjustable and customisable policies, port configuration, and management screens. It also offers several different report types, which make finding clear information about attacks or network activity easy. Reports can also be created according to a schedule set by an administrator and saved on the device for review later.
Peter Stephenson,CeRNS, May 1 2006 12:00AM Security
Review: DP Inspector 100e

Review: DP Inspector 100e

Barbedwire's 1U DPI 100e is a firewall product that uses a 2GHz Celeron processor and 256MB RAM to provide enough power to run its IDS/IPS services.
Christopher Moody Jun 30 2005 12:00AM Security
Review: Countersnipe APD 1000

Review: Countersnipe APD 1000

The APD 1000 is a 1U, Pentium 4-based server running Linux. As such, the first configuration steps are to connect a keyboard and mouse, and enter a management IP address for its management Fast Ethernet interface. It's quick and easy to do, and then gives access to the ADP 1000's web-based management, the Dashboard.
Christopher Moody Jun 30 2005 12:00AM Security
Review: Intrushield 2700

Review: Intrushield 2700

McAfee's IntruShield 2700 fits into the middle of its range, offering 600Mbps of throughput. It has six Fast Ethernet and two GBIC ports for detection, and three Fast Ethernet ports for responses. You can install it in either tap mode or inline mode, where the box sits between the router and main network. In inline mode, it's recommended that you use the appliance's high-availability mode.
Christopher Moody Jun 30 2005 12:00AM Security
Review: Symantec Network Security 7120

Review: Symantec Network Security 7120

Symantec's NS 7120 uses a similar-looking chassis to its firewall range, complete with the LCD control panel. This means it is the easiest device to initially configure, as you can set an IP address within minutes of turning it on.
Christopher Moody Jun 30 2005 12:00AM Security
Review: IPS 5500 Attack Mitigator

Review: IPS 5500 Attack Mitigator

This is a 2U chassis designed to block attacks before they cause damage. It sits between the WAN and firewall, rather than inside the firewall as with other products.
Christopher Moody Jun 30 2005 12:00AM Security
Review: Proventia G400

Review: Proventia G400

The Proventia G400 might look like a standard rack-mount Intel-based server, but it's a lot more than that. The hardware was specifically chosen, drivers written for it and a network agent pre-installed. As a result, it can cope with up to 400Mbps of throughput and monitor up to four network segments using its four copper and four fiber Gigabit Ethernet ports.
Christopher Moody Jun 30 2005 12:00AM Security
Review: Sentivist IPS Sensor 500

Review: Sentivist IPS Sensor 500

NFR's Sentivist IPS uses a combination of hardware sensors, and software for managing. It ships with a Java-based management console, which is good for monitoring and configuring individual sensors.
Christopher Moody Jun 30 2005 12:00AM Security
Review: SonicWall Pro 5060

Review: SonicWall Pro 5060

This is part of SonicWall's security platform appliance range. It's the top-of-the-line model, featuring six Gigabit Ethernet ports and an Intel Xeon processor. Technically, it's not actually an IPS appliance, but more of a firewall with IPS abilities. That said, you can turn the main firewall off and operate it in-line with another firewall.
Christopher Moody Jun 30 2005 12:00AM Security
Review: Sourcefire 3D System

Review: Sourcefire 3D System

Sourcefire's Intrusion Sensor 2000 (IS2000) is an Intel-based appliance that runs a hardened version of Linux and the intrusion detection software. It uses two Fast Ethernet interfaces and has a throughput of 100Mbps.
Christopher Moody Jun 30 2005 12:00AM Security

Log In

  |  Forgot your password?