User guide
Intrusion Prevention
15
Proventia Network IPS G and GX Appliance User Guide
● Firewall rules
You can create firewall rules that enable the appliance to block incoming packets from
particular IP addresses, port numbers, protocols, or VLANs. These rules block many
attacks before they affect your network.
● Automatic security content updates based on the latest security research
You can automatically download and activate updated security content. The security
updates you receive are a result of ISS’s X-Force Research and Development Team’s
ongoing commitment to provide the most up-to-date protection against known and
unknown threats.
● Quarantine and block responses
Inline appliances use the quarantine response to block traffic for a specified amount of
time after an initial attack, and they use the block response to block and reset a
connection in which an event occurs or to drop the packet that triggered an event.
● Virtual Patch™ protection
Proventia’s Virtual Patch capability provides a valuable time buffer, eliminating the
need for you to immediately patch all vulnerable systems. You can wait until you are
ready to manually update appliances or until scheduled updates occur, rather than
having to patch and restart systems.
● SNMP support
Using SNMP-based traps, you can monitor key system problem indicators or respond
to security or other appliance events using SNMP responses.