Presentation is loading. Please wait.

Presentation is loading. Please wait.

REFLEX INTRUSION PREVENTION SYSTEM.. OVERVIEW The Reflex Interceptor appliance is an enterprise- level Network Intrusion Prevention System. It is designed.

Published byAlexa Cox Modified over 10 years ago

Similar presentations

Presentation on theme: "REFLEX INTRUSION PREVENTION SYSTEM.. OVERVIEW The Reflex Interceptor appliance is an enterprise- level Network Intrusion Prevention System. It is designed."— Presentation transcript:

1 REFLEX INTRUSION PREVENTION SYSTEM.

2 OVERVIEW The Reflex Interceptor appliance is an enterprise- level Network Intrusion Prevention System. It is designed to operate within an organizations internal corporate network or outside the network firewalls. It is capable of protecting the network by proactively identifying and responding to attacks in real-time with or without human intervention.

3 PRODUCT DESCRIPTION The Interceptor Management Console consists of two components: –the Core (which collects and correlates attack information from the Interceptors) –the Client (the User Interface for monitoring attacks and managing the Interceptors).

4 PRODUCT DESCRIPTION The Core consists of a Receiver and an Analyzer. –The Receiver collects the communications from the remote Interceptor(s). –The alerts are then sent to the analyzer, which aggregates and correlates all the alerts so that they can be displayed The second part of the IMC is the Client, the Graphical User Interface (GUI) that displays alerts and messages.

5 PRODUCT DESCRIPTION –Interceptor analysis includes the following areas: Data/Payload Signature Analysis Port Scan Detection Packet Flood or Denial of Service (DoS) Detection. SYN Flood Detection Packet Header Signature Analysis Stateful Fragmentation Analysis Network-level Access Control

6 PRODUCT DESCRIPTION Modular Approach: –The DataEval module analyzes packet headers and payloads, matching them against known attack signatures. –The FloodEval module is an anomaly-based module that detects flood-based Denial-of-Service (DoS) and Distributed DoS (DDoS) attacks. –The PermEval module provides comprehensive permission validation for all network traffic.

7 PRODUCT DESCRIPTION Modular Approach: –The ProtoEval module is an anomaly-based module used to evaluate packets for gross malformations resulting from improper values in various protocol headers. –ScanEval detects port scans using a proprietary trending cache. –The SynEval module analyzes TCP SYN packets and patterns for anomalies.

8 LIVE DEMO AT CNC

9 REPORTS ALERTS PER NAME OVER THE PERIOD OF TIME CAUGHT AND FILTERED BY IPS.

10 REPORTS

11

Download ppt "REFLEX INTRUSION PREVENTION SYSTEM.. OVERVIEW The Reflex Interceptor appliance is an enterprise- level Network Intrusion Prevention System. It is designed."

Similar presentations

Network Monitoring System In CSTNET Long Chun China Science & Technology Network.

Network Monitoring System In CSTNET Long Chun China Science & Technology Network.
Intrusion Detection System(IDS) Overview Manglers Gopal Paliwal Gopal Paliwal Roshni Zawar Roshni Zawar SenthilRaja Velu SenthilRaja Velu Sreevathsa Sathyanarayana.

Intrusion Detection System(IDS) Overview Manglers Gopal Paliwal Gopal Paliwal Roshni Zawar Roshni Zawar SenthilRaja Velu SenthilRaja Velu Sreevathsa Sathyanarayana.
Denial of Service, Firewalls, and Intrusion Detection

Denial of Service, Firewalls, and Intrusion Detection
Computer Security: Principles and Practice Chapter 9 – Firewalls and Intrusion Prevention Systems.

Computer Security: Principles and Practice Chapter 9 – Firewalls and Intrusion Prevention Systems.
Snort & ACID. UTSA IS 6973 Computer Forensics SNORT.

Snort & ACID. UTSA IS 6973 Computer Forensics SNORT.
Availability Dan Fleck CS 469: Security Engineering These slides are modified with permission from Bill Young (Univ of Texas) Coming up: Aspects of Computer.

Availability Dan Fleck CS 469: Security Engineering These slides are modified with permission from Bill Young (Univ of Texas) Coming up: Aspects of Computer.
1 Chapter 7 Intrusion Detection. 2 Objectives In this chapter, you will: Understand intrusion detection benefits and problems Learn about network intrusion.

1 Chapter 7 Intrusion Detection. 2 Objectives In this chapter, you will: Understand intrusion detection benefits and problems Learn about network intrusion.
Anomaly Detection Steven M. Bellovin https://www.cs.columbia.edu/~smb Matsuzaki ‘maz’ Yoshinobu 1.

Anomaly Detection Steven M. Bellovin Matsuzaki ‘maz’ Yoshinobu 1.
Lecture 14 Firewalls modified from slides of Lawrie Brown.

Lecture 14 Firewalls modified from slides of Lawrie Brown.
Chapter 14 Wireless Attacks, Intrusion Monitoring and Policy

Chapter 14 Wireless Attacks, Intrusion Monitoring and Policy
Security (Continued) V.T. Raja, Ph.D., Oregon State University.

Security (Continued) V.T. Raja, Ph.D., Oregon State University.
Computer Security Fundamentals by Chuck Easttom Chapter 4 Denial of Service Attacks.

Computer Security Fundamentals by Chuck Easttom Chapter 4 Denial of Service Attacks.
Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.

Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.
Firewalls and Intrusion Detection Systems

Firewalls and Intrusion Detection Systems
Intrusion Detection Systems and Practices

Intrusion Detection Systems and Practices
Snort - an network intrusion prevention and detection system Student: Yue Jiang Professor: Dr. Bojan Cukic CS665 class presentation.

Snort - an network intrusion prevention and detection system Student: Yue Jiang Professor: Dr. Bojan Cukic CS665 class presentation.
5/1/2006Sireesha/IDS1 Intrusion Detection Systems (A preliminary study) Sireesha Dasaraju CS526 - Advanced Internet Systems UCCS.

5/1/2006Sireesha/IDS1 Intrusion Detection Systems (A preliminary study) Sireesha Dasaraju CS526 - Advanced Internet Systems UCCS.
Beyond the perimeter: the need for early detection of Denial of Service Attacks John Haggerty,Qi Shi,Madjid Merabti Presented by Abhijit Pandey.

Beyond the perimeter: the need for early detection of Denial of Service Attacks John Haggerty,Qi Shi,Madjid Merabti Presented by Abhijit Pandey.
© 2006 Cisco Systems, Inc. All rights reserved. Implementing Secure Converged Wide Area Networks (ISCW) Module 6: Cisco IOS Threat Defense Features.

© 2006 Cisco Systems, Inc. All rights reserved. Implementing Secure Converged Wide Area Networks (ISCW) Module 6: Cisco IOS Threat Defense Features.
Why Wireless? The answer is simple: Reach users who are often on the move!

Why Wireless? The answer is simple: Reach users who are often on the move!

Similar presentations

Ads by Google