beautypg.com

Amer Networks E5Web GUI User Manual

Page 19

background image

For details of this feature, seeSection 6.4, “Anti-Virus
Scanning”
.

Intrusion Detection and
Prevention

To mitigate application-layer attacks towards vulnerabilities
in services and applications, cOS Core provides a powerful
Intrusion Detection and Prevention (IDP) engine. The IDP
engine

is

policy-based

and

is

able

to

perform

high-performance scanning and detection of attacks and
can perform blocking and optional black-listing of attacking
hosts.

More information about IDP can be found in Section 6.5,
“Intrusion Detection and Prevention”
.

Web Content Filtering

cOS Core provides various mechanisms for filtering web
content that is deemed inappropriate according to a web
usage policy. With Web Content Filtering (WCF) web content
can be blocked based on category (Dynamic WCF),
malicious objects can be removed from web pages and
web sites can be whitelisted or blacklisted.

More information about this topic can be found in
Section 6.3, “Web Content Filtering”.

Traffic Management

cOS Core provides broad traffic management capabilities
through Traffic Shaping, Threshold Rules and Server Load
Balancing
.

Traffic

Shaping

enables

limiting

and

balancing

of

bandwidth;

Threshold

Rules

allow

specification

of

thresholds for sending alarms and/or limiting network
traffic; Server Load Balancing enables a device running cOS
Core to distribute network load to multiple hosts.

These features are discussed in detail in Chapter 10, Traffic
Management
.

User Authentication

A cOS Core device can be used for authenticating users
before allowing access to protected resources. Multiple
local user databases are supported as well as multiple
external RADIUS servers, and separate authentication
policies can be defined to support separate authentication
schemes for different kinds of traffic.

In addition, cOS Core supports User Identity Awareness. This
means Windows based clients need only be authenticated
once by a Windows Active Directory™ server and the
authenticated state is then relayed to cOS Core.

See Chapter 8, User Authentication for detailed information.

Operations and Maintenance

Administrator management of cOS Core is possible through
either a Web-based User Interface (the Web Interface or
WebUI) or via a Command Line Interface (the CLI). Both
interfaces allow management of a single Clavister Security
Gateway at a time. cOS Core also provides detailed event
and logging capabilities plus support for monitoring
through SNMP.

More detailed information about this topic can be found in

Chapter 1: cOS Core Overview

19

This manual is related to the following products: