Tipping Point X5 Anti-Spam Filter Service 3CX5-AS-E Data Sheet
Product codes
3CX5-AS-E
2
3COM
®
X5 AND X506 UNIFIED SECURITY PLATFORMS
KEY BENEFITS
PROACTIVE NETWORK SECURITY
The 3Com X5 and X506 devices leverage the best-in-class
TippingPoint IPS Threat Suppression Engine currently used to
protect thousands of enterprise networks throughout
the world.
TippingPoint IPS Threat Suppression Engine currently used to
protect thousands of enterprise networks throughout
the world.
The IPS continually cleanses the network at layers 2-7,
checking both Internet and intranet traffic, eradicating threats
and helping to prevent bandwidth hijacking and malicious
traffic—spyware, worms, viruses, trojans, phishing attempts,
VoIP threats and other harmful activities. Statistical, protocol
and application anomaly protection safeguards the network
against traffic surges, buffer overflows and unknown attacks
and vulnerabilities (zero-day threats).
checking both Internet and intranet traffic, eradicating threats
and helping to prevent bandwidth hijacking and malicious
traffic—spyware, worms, viruses, trojans, phishing attempts,
VoIP threats and other harmful activities. Statistical, protocol
and application anomaly protection safeguards the network
against traffic surges, buffer overflows and unknown attacks
and vulnerabilities (zero-day threats).
To ensure protection against new and evolving security
threats, updated attack filters are incorporated into Digital
Vaccine
threats, updated attack filters are incorporated into Digital
Vaccine
®
Attack Filter Update Services, provided by
TippingPoint, which are automatically distributed to all
subscribing 3Com X5 and X506 devices, providing pre-emptive
protection against new and zero-day vulnerabilities. The
Digital Vaccine service offers this protection and prevention on
a weekly (or more frequent) basis.
subscribing 3Com X5 and X506 devices, providing pre-emptive
protection against new and zero-day vulnerabilities. The
Digital Vaccine service offers this protection and prevention on
a weekly (or more frequent) basis.
Recommended settings for IPS filters enable preconfigured
policies that can automatically and accurately block attacks
without any tuning, significantly reducing the time and
resources required to protect and maintain a healthy network.
This ensures that no “good” traffic is blocked and no “bad”
traffic is permitted, with no security expertise or fine-tuning
of settings required.
policies that can automatically and accurately block attacks
without any tuning, significantly reducing the time and
resources required to protect and maintain a healthy network.
This ensures that no “good” traffic is blocked and no “bad”
traffic is permitted, with no security expertise or fine-tuning
of settings required.
ADVANCED VPN CONNECTIONS
While most security implementations do not address security
within a VPN connection, 3Com Unified Security platforms
take a uniquely comprehensive approach to VPN-based
security by providing the ability to look inside VPN IPSec
tunnels for threats. This thorough inspection prevents
propagation of exploits and other malware between sites and
can also be used to provide protection from security risks that
occur when laptop users terminate VPN connections while
traveling. Threats that once gained access via a VPN tunnel
are now eliminated by this unique approach, offering
complete security protection, ensuring that remote VPN
clients or branch offices cannot be used to propagate threats
into the LAN.
within a VPN connection, 3Com Unified Security platforms
take a uniquely comprehensive approach to VPN-based
security by providing the ability to look inside VPN IPSec
tunnels for threats. This thorough inspection prevents
propagation of exploits and other malware between sites and
can also be used to provide protection from security risks that
occur when laptop users terminate VPN connections while
traveling. Threats that once gained access via a VPN tunnel
are now eliminated by this unique approach, offering
complete security protection, ensuring that remote VPN
clients or branch offices cannot be used to propagate threats
into the LAN.
Another unique feature is prioritization of bi-directional traffic
inside the VPN tunnel, enabling high-quality secure VoIP
services and optimizing other site-to-site applications.
inside the VPN tunnel, enabling high-quality secure VoIP
services and optimizing other site-to-site applications.
APPLICATION PRIORITIZATION AND
OPTIMIZATION
OPTIMIZATION
To control the amount of bandwidth allotted to applications
and deliver the appropriate quality of service (QoS), 3Com X5
and X506 devices can throttle down non-critical applications
such as FTP, and throttle up business-critical and latency-
sensitive ones such as VoIP. Bandwidth can be allocated for
both inbound and outbound directions, both inside and outside
VPN tunnels, to maximize control.
and deliver the appropriate quality of service (QoS), 3Com X5
and X506 devices can throttle down non-critical applications
such as FTP, and throttle up business-critical and latency-
sensitive ones such as VoIP. Bandwidth can be allocated for
both inbound and outbound directions, both inside and outside
VPN tunnels, to maximize control.
This policy-based traffic-shaping capability helps prevent
network congestion, giving administrators a powerful tool for
making sure that network services meet user expectations
and adhere to the policies set by network managers.
network congestion, giving administrators a powerful tool for
making sure that network services meet user expectations
and adhere to the policies set by network managers.
APPLICATION BLOCKING AND WEB FILTERING
The platforms enforce usage policies by blocking or rate
limiting applications such as instant messaging (IM) and
peer-to-peer file sharing that are not essential to business
and can waste bandwidth.
limiting applications such as instant messaging (IM) and
peer-to-peer file sharing that are not essential to business
and can waste bandwidth.
3Com offers an optional integrated web content filter
subscription service that limits employee access to
objectionable or unacceptable websites that could lower
productivity or cause legal problems. This protection is kept
current because content is filtered through a continually
updated database.
subscription service that limits employee access to
objectionable or unacceptable websites that could lower
productivity or cause legal problems. This protection is kept
current because content is filtered through a continually
updated database.
Web filter policies can be customized to the site requirements,
enforcing different access at a security zone or group/user
basis. Advanced integration with directory services such as
Windows Active Directory and Novell eDirectory allow fine
grain per-user control.
enforcing different access at a security zone or group/user
basis. Advanced integration with directory services such as
Windows Active Directory and Novell eDirectory allow fine
grain per-user control.