Cisco Cisco ASA 5585-X with No Payload Encryption Scheda Tecnica
Data Sheet
All contents are Copyright © 1992–2008 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 1 of 5
Cisco IPS Software
Product Overview
Cisco IPS Software is the industry’s leading network-based intrusion prevention software. It
provides intelligent, precise, and flexible protection for your business by accurately identifying,
classifying, and preventing malicious traffic before it can affect your business productivity.
Table 1.
Cisco IPS Software Features
Feature
Description
Intelligent
●
Layer 2–7 inspection
◦
True stateful inspection
◦
Full stream reassembly
◦
Protocol decoding
◦
Tunneling protocol inspection
●
Vulnerability-based protection
●
Day-zero protection
◦
Unknown vulnerabilities Unknown exploits
◦
Unknown exploit variants
◦
Day-zero worms
●
Protocol anomaly detection
●
Statistical anomaly detection
●
Application anomaly detection
●
Statistical analysis engine
●
Evasion protection
●
Custom signatures
Precise
●
Inline prevention
◦
Drop packet
◦
Drop flow
◦
Deny attacker
◦
Log attacker
◦
Log victim
◦
Modify packet
◦
Terminate session
◦
TCP reset
◦
Rate limit
●
Network-integrated prevention
◦
Block attacker Block connection
◦
Rate limit
◦
Supported devices: Firewalls, Routers, Switches, Wireless LAN controllers
●
Dynamic default blocking
◦
Real-time risk rating
◦
Adjustable risk tolerance
◦
OS information
◦
Session information