Recognition
Dragon® IDS/IPS
Post-Connect threat analysis, prevention and containment
The Dragon® IDS/IPS is unique in the industry based on its ability to deliver both host-based and network-based functionality with simultaneous support for the following intrusion detection and prevention capabilities:
- Signature-based
- Protocol-based
- Anomaly-based
- Behavior-based
Its high-performance multi-threaded architecture and virtual sensor support ensures Dragon can scale to secure the largest networks in the world.
When Dragon IDS is combined with Enterasys NetSight® Automated Security Manager (ASM) you benefit because the source of attacks is identified, located and automatically isolated/quarantined whether that user/device is connected to Enterasys networking hardware or to third-party infrastructure. This is integral to Enterasys’ ability to secure any network from any vendor.
Dragon’s advanced Intrusion Prevention (IPS) technology is designed to block attackers, mitigate denial of service attacks and prevent information theft while remaining totally invisible to the network. Built upon Dragon’s award-winning Intrusion Detection technology, the IPS will alert on the attack, drop the offending packets, terminate the session for TCP- and UDP-based attacks, and dynamically establish firewall rules that can keep the source of the threat off the network indefinitely or for a configurable period of time. Dragon’s Network IPS can leverage the thousands of vulnerability- and exploit-based signatures in Dragon’s threat libraries as a basis for network control and threat defense.