Zero-Minute. Zero-Touch. Zero-False Positive.
Multilayer Intrusion Prevention and DoS Protection
DefensePro® provides enterprises with comprehensive intrusion prevention, behavioral anomaly detection and Denial of Service (DoS) protection from a wide variety of known and unknown zero-day attacks. This easy-to-use scalable solution protects against worms, viruses, pre-attack probes, server cracking, DoS and other threats. It proactively prevents both network- and server-based attacks while ensuring high performance for legitimate application traffic, even when under attack.
Protection both in Network and Application
As an in-line intrusion prevention, DoS protection and traffic-shaping solution, DefensePro is designed for enterprise core and perimeter deployment, data centers, university campuses and carrier backbones. It integrates multiple layers of defense, including
- Signature-based protection
- Server-cracking protection
- DoS/DDoS floods mitigation
- Encrypted SSL attack protection
- Access control
- Bandwidth management
DefensePro is the industry’s first solution providing unparalleled security by fully integrating adaptive, behavior-based protection capabilities in both network and application levels. It immediately identifies and mitigates a wide range of threats (including zero-day attacks) by employing adaptive behavioral analysis – all without human intervention.
DefensePro’s customized, ASIC-based hardware architecture ensures the highest levels of security, availability and performance.
- The DefensePro x20 series supports multiple segments for monitoring enterprise core and perimeter environments and scales from 600 Mbps up to 3 Gbps.
- The DefensePro x02 series supports single segment monitoring, offers the best price-to-performance for securing enterprise perimeter remote branches and scales from 100 Mbps to 500 Mbps.
- DefensePro 6000 supports multiple segment monitoring, offers DoS/DDoS flood protection and traffic shaping and secures e-Commerce and carrier links up to 6 Gbps.
And when your solution needs to grow, protect your investment by purchasing an affordable software license for greater throughput. Radware’s software-based performance upgrades make it easy to scale your solution.
Adaptive Decision Engine
.jpg "DefensePro Adaptive Search Engine")
DefensePro’s behavior-based, self-learning mechanism proactively scans for anomalous network and server traffic patterns. When detecting an attack, DefensePro characterizes the attack’s unique behavior, establishes filter criteria and executes the appropriate countermeasures. A closed feedback mechanism dynamically modifies filtering criteria as the attack unfolds and mutates, protecting against even the most sophisticated attacks with a high degree of accuracy. DefensePro is unique in its ability to rapidly and accurately distinguish between three broad categories of behavior: legitimate normal traffic, attack traffic and unusual patterns created by legitimate activity.
Key Business Values
- Maintains business continuity even when the network is under attack
- Ensures server survivability and critical application (web, mail, FTP, DNS) availability under network attack
- Wide coverage against network threats including worms, Trojans, BOTs, pre-attack probes and DoS
- Blocks attacks without blocking legitimate user traffic so infected hosts can continue to work uninterrupted
- Reduces total cost of ownership (TCO) of security management
- Adapts to changing network conditions
- Requires minimal initial configuration without the overhead of system tuning and ongoing maintenance
- Seamless integration into the network environment
- Reduces link capacity costs for carriers
- Removes high-volume worm propagation activity and DoS/DDoS flood attacks
- Fastest response to known and zero-day attacks without blocking legitimate users’ traffic during attack
- Ensures service level agreements (SLAs) for service providers
- Service level guarantees using bandwidth management rules
Insite Centralized Management and Reporting
Radware’s
Insite provides the management interface for all APSolute products, including DefensePro. With features that enable centralized device configuration, monitoring and reporting, Insite management solution increases visibility and control of network security.