|
|
|
|||||
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Niksun Netdetector Security
NetDetector is a non-intrusive network security monitoring product that (when deployed as part of your data communications infrastructure) inspects traffic flows, detects the activities of intruders, sets alarms, makes continuous copies of data from the network, and analyzes every packet in the network in real-time at production network traffic rates. NetDetector also allows for the easy replay of all network activity at the application layer, e.g., Web activity and for easy analysis by security or law enforcement agencies.
NetDetector is a software module built on NIKSUN’s core high performance data capture, analysis and storage platform. The software module recognizes anomalous network activity that may be the result of illegal network intrusion. Upon the identification of such activity it begins to archive traffic data and alert the system administrator via console, SNMP alarms, e-mail, pager, etc. Optionally, it can stream archived data to a designated host over a high-speed data link.
|
 |
||||||||||||||||||||||||||||||||||||
| Key Benefits | • Flexible Traffic Analysis | |
| Capabilities – Multi-time scale | ||
| • Rapid identification of an attack in | analysis and flexible filter lan- | |
| progress based on "suspect" | guage for post capture analysis. | |
| changes in utilization, IP connec- | NetDetector analyzes, filters and | |
| tion patterns, port scans, etc. | visualizes large amounts of data | |
| very quickly. | ||
| • Identification of the IP host(s) | ||
| involved in a Denial of Service | • No impact on the network – | |
| type attack so that firewall protec- | NetDetector is completely non- | |
| tion could be provided quickly to | intrusive, copying network traffic | |
| reduce or avoid system downtime. | off the wire using passive taps, | |
| thus not affecting other devices on | ||
| • Data collection for forensics | ||
| the network. NetDetector is totally | ||
| purposes. This is vital in identify- | ||
| undetectable by intruders. | ||
| ing the security hole(s) in the | ||
| system and the details of the | NetDetector Anomaly | |
| attack (e.g., how the network was | Detection | |
| broken into and by whom). | ||
| • Evidence trail for prosecution. | ||
| • Excessive Traffic Load | ||
| • NetDetector cannot be ‘scanned’ | ||
| • Resonance and Probing Attacks | ||
| by intruders. They will have no | ||
| idea that their activities are being | • Denial of Service Attacks | |
| detected and monitored. | ||
| • IP Address Spoofing | ||
| • In essence, NetDetector acts as a | ||
| network "surveillance camera" that | NetDetector Hardware | |
| allows network managers to view | Options | |
| who is accessing network | ||
| resources. NetDetector has | ||
| • Support for WAN interfaces (T1, | ||
| proven itself to be extremely | ||
| E1, V.35, X.21, OC3 ATM) | ||
| effective at detecting, analyzing, | ||
| and closing security gaps that may | • Support for LAN Interfaces | |
| exist in a customer’s networks. | (Ethernet, Fast Ethernet, Gigabit | |
| Ethernet) | ||
| • Web-access to the information – | ||
| NetDetector is accessed via a | • Up to 144 Gigabytes Internal | |
| Web browser | Storage | |
| • Easy deploy in a multi-vendor | • Up to 1 Terabyte of External | |
| network – NetDetector can be | Storage | |
| deployed on any network at the | ||
| WAN or at the LAN, using | ||
|
1-888-4-WAN-LAN |
© 2008 Data Connect Enterprise
|
|
