Amer Networks E5Web GUI User Manual
Page 19

For details of this feature, seeSection 6.4, “Anti-Virus
Scanning”.
Intrusion Detection and
Prevention
To mitigate application-layer attacks towards vulnerabilities
in services and applications, cOS Core provides a powerful
Intrusion Detection and Prevention (IDP) engine. The IDP
engine
is
policy-based
and
is
able
to
perform
high-performance scanning and detection of attacks and
can perform blocking and optional black-listing of attacking
hosts.
More information about IDP can be found in Section 6.5,
“Intrusion Detection and Prevention”.
Web Content Filtering
cOS Core provides various mechanisms for filtering web
content that is deemed inappropriate according to a web
usage policy. With Web Content Filtering (WCF) web content
can be blocked based on category (Dynamic WCF),
malicious objects can be removed from web pages and
web sites can be whitelisted or blacklisted.
More information about this topic can be found in
Section 6.3, “Web Content Filtering”.
Traffic Management
cOS Core provides broad traffic management capabilities
through Traffic Shaping, Threshold Rules and Server Load
Balancing.
Traffic
Shaping
enables
limiting
and
balancing
of
bandwidth;
Threshold
Rules
allow
specification
of
thresholds for sending alarms and/or limiting network
traffic; Server Load Balancing enables a device running cOS
Core to distribute network load to multiple hosts.
These features are discussed in detail in Chapter 10, Traffic
Management.
User Authentication
A cOS Core device can be used for authenticating users
before allowing access to protected resources. Multiple
local user databases are supported as well as multiple
external RADIUS servers, and separate authentication
policies can be defined to support separate authentication
schemes for different kinds of traffic.
In addition, cOS Core supports User Identity Awareness. This
means Windows based clients need only be authenticated
once by a Windows Active Directory™ server and the
authenticated state is then relayed to cOS Core.
See Chapter 8, User Authentication for detailed information.
Operations and Maintenance
Administrator management of cOS Core is possible through
either a Web-based User Interface (the Web Interface or
WebUI) or via a Command Line Interface (the CLI). Both
interfaces allow management of a single Clavister Security
Gateway at a time. cOS Core also provides detailed event
and logging capabilities plus support for monitoring
through SNMP.
More detailed information about this topic can be found in
Chapter 1: cOS Core Overview
19