Network-based IPS Appliance Operating in-line at Wire Speed
Hillstone S-Series plays an integral part of network security systems for its high-performance, no compromise, best-of-breed protection capability and broad and flexible deployment scenarios.
As the threat landscape continues to evolve aggressively, an increasing number of network protection technologies have quickly emerged. Among these various technologies, Intrusion Prevention System (IPS) remains one of the most widely deployed solutions, regardless of platform or form factor.
Hillstone Network-based IPS (NIPS) appliance operates in-line, and at wire speed, performing deep packet inspection, and assembling inspection of all network traffic. It also applies rules based on several methodologies, including protocol anomaly analysis and signature analysis to block threats. Hillstone NIPS can be deployed in the network to inspect traffic left undetected by perimeter solutions and is an integral part of network security systems for its high-performance, no compromise, best-of-breed protection capability and broad and flexible deployment scenarios.
Unparalleled Threat Protection without Performance Compromise
The Hillstone NIPS platform has the most comprehensive high performance inspection engine, combined with the best-of-breed signature partnering with leading technology partners, providing customers the highest threat detection rate with the lowest total cost of ownership (TCO). Moreover, it provides high throughput, low latency and maximum availability to maintain efficient security operations without compromising network performance.
Granular Reporting with User Targeted Viewpoints
Bringing multiple sources together, Hillstone NIPS can identify contextual information to make proper blocking decisions. With a granular and robust reporting function, it offers visibility across different views, based on whether you are a business system administrator, a security administrator or the CIO or executive.
Ease of Deployment
Deploying and managing the Hillstone NIPS is simple, with minimum overhead. It can be deployed in the following modes to meet security requirements and ensure optimal network connectivity: Active protection (intrusion prevention mode), real time monitoring and blocking; Passive detection (intrusion detection mode), real time monitoring and alert.
Centralized Management
The Hillstone NIPS can be managed by the Hillstone Security Management Platform (HSM). Administrators can centrally register, monitor, upgrade NIPS devices deployed in different branches or locations, with a unified management policy across the network for maximum efficiency.
Key features
Resources
|
|
- Correlation among unknown threats, abnormal behavior and application behavior to discover potential threat or attacks
- Multi-dimension correlation rules, automatic daily update from the cloud
- Behavior-based advanced malware detection
- Detection of more than 2000 known and unknown malware families including Virus, Worm, Trojan, Overflow etc.
- Real-time, online, malware behavior model database update
|
|
| Supports compressed file virus scanning |
- Abnormal protocol attack defense
- Anti-DoS/DDoS, including SYN Flood, DNS Query Flood defense
- ARP attack defense
|
|
|
|
|
|
|
|
- Identify and filter traffic from risky IPs such as botnet hosts, spammers, Tor nodes, breached hosts, and brute force attacks
- Logging, dropping packets, or blocking for different types of risky IP traffic
- Regular IP reputation signature database upgrade
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|