DefensePro

The DefensePro line of appliances from Radware provide network traffic inspection for deployments from small branch offices to the enterprise. The appliances provide multiple security-related functions in regards to the analysis of both inbound and outbound network traffic, including:

- Accelerated signature matching to block worms, viruses, Trojans and intrusions. The appliances are able to protect against over 1,500 attack signatures. Administrators can categorize and apply signatures based on platform, protocol, and traffic anomalies; and policy enforcement can be configured by groups/filters and physical network segmentation.

- Multi-gigabit Denial of Service/DDoS protection, and SYN flood protection for known and unknown SYN floods. A key feature noted by the vendor is the appliance's support for "adaptive behavioral analysis," a self-learning methodology that scans network traffic for anomalous traffic patterns and reacts proactively to suspected attacks.

- Controlling of end-to-end bandwidth via the Bandwidth Management (BWM) module. The BWM module provides the ability to set bandwidth allocations per traffic flow, allowing for bandwidth limiting per client or session.

Seven models of the DefensePro appliance are currently available:

- DP-102: targeted to branch or perimeter deployments, and featuring 100 Mb/sec of maximum throughput over 3 10/100/1000 ports.

- DP-202: Similar to the 102, with increased performance to 200 Mb/sec.

- DP-502: Targeted to core network deployments, and boasting 500 Mb/sec performance over 3 10/100/1000 ports.

- DP-620: Increases performance to 600 Mb/sec and increases the available 10/100/1000 ports to 12. The 620 also adds 8 GBIC ports.

- DP-1020: Similar to the 620, with increased performance to 1 Gb/sec.

- DP-3020: Similar to the 1020, but with increased performance to 3 Gb/sec.

- DP-6000: The top of the line model in performance. The DP-6000 boasts a maximum throughput of up to 5 Gb/sec, over 8 10/100/1000 ports, 9 GBIC ports, and dual 10 GigE ports.

All but the DP-6000 appliance include listed support for DoS, IPS, and the Bandwidth Management module (IPS is not listed as supported in the DP-6000). All models additionally contain an RS-232 port.

New features in the latest DefensePro release include:

- Adaptive behavior server-based IPS, complementing the network-based behavioral prevention described above and targeting attacks against application servers. New features include HTTP, VoIP SIP, FTP, POP3, SMTP, IMAP, and MS-SQL specific protections, with detected attacks including brute-force attempts, dictionary attacks, HTTP vulnerability scanning, SIP spoofed Invite floods, SIP spoofed register floods, and more.

- The Web-Flood Mitigator, specifically for the prevention of HTTP page flood attacks.

The DefensePro appliances are available now, pricing starts at $8,000. Contact Radware for further information.