Сводные данные для Cisco Cisco IDS 4215 Sensor
© 2004 Cisco Systems, Inc. All right reserved.
Important notices, privacy statements, and trademarks of Cisco Systems, Inc. can be found on cisco.com
Page 2 of 4
when the manager is polled. Cisco Security Agent requires little or no environmental tuning, shipping with predefined policies that prevent most
types of malicious activity from occurring.
For applications requiring access to system resources, the system calls are intercepted by Cisco Security Agent, which then compares them against a
cached policy. The agent correlates this particular call with others made by that application or process, and correlates these events to detect malicious
activity. If the request does not violate policy, it is passed to the kernel for execution. If the request does violate policy, it is blocked. An appropriate
error message is passed back to the application, and an alert is generated and sent from the agent to the Cisco Security Agent Management Console.
CISCOWORKS VMS
Deploying intrusion detection and prevention requires the ability to manage IPS device configuration and Cisco Security Agent policies. It is
critically important to be able to capture the alarms from these devices and to correlate the information that they relay in order to quickly identify
and respond to potential security events. CiscoWorks VMS allows network administrators and personnel to configure IPS devices as well as Cisco
Security Agent devices running on multiple hosts through a single, common interface. CiscoWorks VMS eases the configuration and management of
these devices and agents throughout the network. In addition, the CiscoWorks VMS Security Monitor provides a singular interface that captures the
alarms from these agents and devices and allows network personnel to investigate alarms in greater detail. By combining Cisco IPS Sensor Software,
the Cisco Security Agent, and the CiscoWorks VMS software suite, Cisco provides SMBs with the tools necessary to see into their networks,
identify attacks, and respond appropriately. Together, these tools allow SMB network personnel to proactively defend their networks against attack
and to secure their businesses.
ORDERING INFORMATION
Table 1 lists ordering information for Cisco Threat Defense bundles.
Table 1.
Ordering Cisco Threat Defense Bundles
Part Number
Description
IDS4215-CSA-BUN-K9
Cisco Threat Defense IDS 4215/Cisco Security Agent Bundle:
•
One Cisco IDS 4215 Sensor appliance
•
One Cisco Security Agent server
•
10 Cisco Security Agent desktop agents
•
CiscoWorks VMS-Basic
CON-SNT-IDS4215B
Cisco SMARTnet
®
support for IDS4215-CSA-BUN-K9
EXPORT CONSIDERATIONS
Cisco Threat Defense bundles are subject to export controls. For export guidance, refer to the export compliance Website at:
http://www.cisco.com/wwl/export/crypto/
For specific export questions, contact:
export@cisco.com