MPED-X-Routing-Tender20080721 - Madhya Pradesh State Excise
MPED-X-Routing-Tender20080721 - Madhya Pradesh State Excise
MPED-X-Routing-Tender20080721 - Madhya Pradesh State Excise
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
• Accurately identifies attacks with correct severity level while allowing benign<br />
traffic to pass without interruption.<br />
• Accurately respond to intrusion attempts<br />
Detection & Prevention Technology:<br />
• Detects and blocks all known, high-risk exploits.<br />
• Employs full seven-layer protocol analysis of over 150 Internet protocols and<br />
data file format. Provide list of network and application layer protocols decoded.<br />
• Operates effectively and protects against high risk, high impact malicious traffic<br />
via default out of box configuration, should be able to block more than 1000<br />
attacks by default.<br />
• Performs stateful packet inspection<br />
• Detects and blocks malicious web traffic on any port.<br />
• Does TCP stream reassembly.<br />
• Does IP defragmentation.<br />
• Protocol anamoly detection<br />
• Does Bi- directional inspection<br />
• Detects attacks within protocols independent of port used<br />
• Does Heuristics<br />
• Does RFC Compliance<br />
• Does Protocol tunneling<br />
• Supports attack recognition inside IPv6 encapsulated packets<br />
• Supports active blocking of traffic based on pre-defined rules to thwart attacks<br />
before any damage is done, i.e. before compromise occurs.<br />
• Supports active blocking of traffic based on dynamic responses to pre-defined<br />
rules.<br />
• Supports several prevention techniques including drop-packet, tcp-rst, etc.<br />
Response Mechanisms:<br />
• Offers a variety of built-in responses including console alerts, database logging,<br />
email notifications, SNMP traps, offending packet captures, and packet captures.<br />
Management Console:<br />
• Management Console Software should be able to manage 10 Network<br />
Appliances. Hardware specifications to be provided for the Management<br />
Console.<br />
• Allows central management of signature updates. Is able to centrally push out<br />
updates from one location to multiple heterogeneous networks, server agents.<br />
• Centralized Management Console should manage all the products NIPS, HIPS,<br />
End Point Security and Vulnerability Assessment.<br />
• Support for built in ticketing system.<br />
• Granular Management. Allows policy to be assigned<br />
• Policy per device<br />
• Policy per port<br />
• Policy per VLAN tag<br />
• Policy per IP address/range<br />
• Provide automated notification of IPS communications failure<br />
• Integration capability with Arcsight, Tivoli, HPOV<br />
70