Provides all-round protection for application servers and defends against system vulnerability attacks, service vulnerability attacks, brute force, SQL injection, cross-site scripting, and viruses.
Client protection
Protects browsers and plug-ins, such as Java and ActiveX.
Protects files such as W ord, PDF, Flash, and A VI.
Detects and defends against system vulnerabilities, spyware, adware and viruses.
Infrastructure Protection
Defends against malformed packet attacks, special packet control attacks, scanning attacks, and TCP/UDP flood attacks.
Defends against application-layer DDoS attacks, such as the HTTP, HTTPS, DNS, and SIP flood attacks.
Traffic self-learning: sets the threshold for traffic-type attacks based on statistics on normal traffic.
Device management
Provides GUI, hierarchical management over administrators, access control permission setting, and centralized management over devices.
Supports the rollback and periodic update of the engine knowledge database, and centralized update on the intranet.
Log report monitor
Provides device status monitoring, event information backup, log query and filtering, real-time network status monitoring, and report customization.
Deployment and availability
The IPS device is deployed in in-line mode and the IDS device is deployed in off-line mode. Interfaces are deployed in online and off-line modes.
Supports hardware bypass cards and hot standby deployment.