Manualshelf

Datasheet

ManualsBrandsCisco ManualsNetworkingCS-MARS-50-K9
12345678910
Data Sheet
All contents are Copyright © 1992–2007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information. Page 7 of 10
Cisco Part Number
(Global Controller Models)
LC Models
Supported
Maximum
Connections
Storage Rack Unit Power
Cisco Security MARS GC
(CS-MARS-GC-K9)
Cisco Security
MARS
20/50/100/100
e/200 only
Not currently
restricted
1 TB RAID
10 hot-
swappable
4 RU x
25.6 in.
2x 500W
dual-
redundant,
120/240V
autoswitch
Cisco Security MARS GC2 R
(CS-MARS-GC2R-K9)
Cisco Security
MARS 20/50
only
5 2 TB RAID
10 hot-
swappable
2 RU x 27
3/4" (D);
3.44" (H);
19" (W) in.
2x 750 W
dual-
redundant,
120/240V
autoswitch
Cisco Security MARS GC2
(CS-MARS-GC2-K9)
All Cisco
Security
MARS
Not currently
restricted
2 TB RAID
10 hot-
swappable
2 RU x 27
3/4" (D);
3.44" (H);
19" (W) in.
2x 750 W
dual-
redundant,
120/240V
autoswitch
Dynamic Session-Based Correlation
Network Based Anomaly detection, including Cisco NetFlow
Behavior-based and rules-based event correlation
Comprehensive built-in and user-defined rules
Automated NAT normalization
Topology Discovery
Layer 3 and Layer 2 routers, switches, and firewalls
Network IDS blades and appliances
Manual and scheduled discovery
Secure Shell (SSH), SNMP, Telnet, and device-specific communications
Vulnerability Analysis
Incident-triggered targeted network-based and host-based fingerprinting
Switch, router, firewall, and NAT configuration analysis
Automated vulnerability scanner data capture
Automated and user-tuned false positive analysis
Incident Analysis and Response
Role-based security event management dashboard
Session-based event consolidation with full-rule context
Graphical attack path visualization with detailed investigation
Attack path device profiles with endpoint MAC identification
Graphical and detailed sequential attack pattern display
Incident details, including rules, raw events, common vulnerabilities and exposures (CVEs),
and mitigation options
Immediate incident investigation and false positive determination
GUI rule definition in support of custom rules and keyword parsing
Incident escalation with user-based “to-do” work list
Notification, including e-mail, pager, syslog, and SNMP
Integration with existing ticketing and workflow system via Extensible Markup Language
(XML) event notification