Specifications
OmniAccess 5510 USG - Release Notes
September 2010
Intrusion Detection
Alcatel IPS/IDS is a network security system designed to identify intrusive or malicious behavior via
monitoring of network activity. The IDS identifies suspicious patterns that may indicate an attempt to attack,
break in, or otherwise compromise a system. IDS can be network-based or host-based, passive or reactive, and
can rely on either misuse detection or anomaly detection.
Detection Mode
In detection mode, IDS detects the attack and alarm is generated.
Prevention Mode
Packets are dropped. It sends resets depending on the configuration and group level and rule level
prevention information is maintained in Snort.
Group-Level Detection
In group level, different actions can be taken for different group attack packets. One group can have
detection as action while others can have prevention.
LAN Protocols
STP
Spanning-Tree Protocol (STP) is a link management protocol that provides path redundancy while
preventing undesirable loops in the network. For an Ethernet network to function properly, only one
active path can exist between two stations.
Bridging
Bridging occurs at layer 2, the link layer, which controls data flow, handles transmission errors,
provides physical addressing, and manages access to the physical medium.
Integrated Routing and Bridging
The L2 port on OmniAccess 5510 USG system is a VLAN-aware Ethernet switch. However, for
routing across VLANs or between traffic on the L2 port and other ports, there has to be a mechanism
to detect traffic that is to be routed, and subject it to normal IP packet processing activities such as
filters, NAT, IPsec, FIB lookup, and so on. Hence a L2 port will then be capable of taking part in both
bridging and routing at the same time. This technology is called IRB on OmniAccess 5510 USG.
OmniAccess 5510 USG - Release 3.0 Page 15 of 33
032667-10 Rev. A