IDS & IPSgateProtect’s IDS & IPS combines the advantages of signature-, protocol-, and anomaly-based inspection.The Intrusion Detection System (IDS) indicates attacks against your network. It permanently monitors the network traffic, analyzes package content and identifies dangerous data coming from legitimate ports. In an emergency the Intrusion Prevention System immediately kicks in: For example DDoS-attacks (Distributed Denial of Service), which intentionally cause server congestion, can be eliminated that way. Same applies to viruses and hacker attacks like buffer overflows, secret port scans, CGI attacks, SMP probes and OS fingerprinting attempts – they don’t stand a chance with gateProtect’s IDS & IPS.
The gateProtect IDS & IPS acts on all relevant communication layers from layer 2 to layer 7 without slowing down data traffic or narrowing resources. Within companies IT-managers can choose between monitoring or active blocking. IDS & IPS processes can be activated together or individually on the network interface. Filters can be clearly defined by gateProtect’s IDS & IPS. All emerging threat signatures can individually be switched on or off. Of course this applies for IDS and IPS independently of each other. Additionally gateProtect’s IDS detects intern attacks like viruses coming from notebooks. If required, IDS and IPS processes for monitoring can be connected to any intern network interface. |
