IDP 50/200/600/1100
Using industry recognized stateful detection and prevention techniques, Juniper Networks IDP provides zero-day protection against worms, Trojans, spyware, keyloggers, and other malware from penetrating the network and spreading from already infected users to others. In addition to protecting networks against attacks, Juniper Networks IDP provides information on rogue servers as well as types and versions of applications and operating systems that may have unknowingly been added to the network. Combined with granular level of control such as rate limiting, not only can administrators control the access of specific applications, but they can now ensure business critical applications receive a predictable quality of service.
Juniper Networks IDP products are managed by NetScreen-Security Manager (NSM), the same management solution used by Juniper Networks FW/VPN appliances as well as the integrated ISG FW/VPN/IDP products. In addition to the benefit of managing all Juniper Networks firewall, VPN and IDP products from a single user interface, NSM offers granular control over the system's behavior, easy access to extensive logging and fully customizable reports.
The Juniper Networks purpose-built IDP product line includes the IDP 50, IDP 200, IDP 600 C/F and the IDP 1100 C/F. Packaged in 1U or 2U rack-mountable form factors, all of the products contain the full IDP features and capabilities along with flexible high availability options.
Features & Benefits
Key features and benefits of the Juniper Networks IDP solutions include:
- Multi-method detection system that includes compound signatures, stateful signatures, protocol anomaly and backdoor detection
- Extensive signature customization to improve the ability to detect unique attacks and tailor the signature specific to the customer's requirements
- Rate limiting capability at the application level (via Diffserv marking) to ensure QOS for mission-critical applications
- Enhanced network visibility with support for new protocol decodes covering VoIP solutions, database accesses and wireless data communication
- Closed loop investigation process to quickly see the big picture and then drill down to the appropriate level of detail to make informed security decisions
- Enterprise Security Profiler (ESP) to gain insight into network and attack activity that accelerates inline deployment and facilitates attack investigation
- Security Explorer to view the network activities through a graphical, easy to understand and interactive user interface
- Policy Editor to create and deploy granular security policies based on what traffic to look at, what attacks to look for in that traffic and how to respond when an attack has been detected
- Log Viewer to investigate specific security incidents with the ability to customize the way information is processed within the system
- Common management solution as Juniper Networks FW/VPN and integrated FW/VPN/IDP appliances for centralized rule-based management across multiple security appliances
- Fully customizable reporting to generate up to the minute status on network activity
- Role-based administration to logically divide administrator accesses based on business practices
- IDP clustering to enable stateful, standalone high availability minimizing the risk of a single point of failure and maximizing network protection
