Datasheet
5
ISG1000 ISG2000
Integrated IPS (Optional Integrated IDP)
2, 10
(continued)
Request and response side attack protection Yes Yes
Compound attacks – combines stateful signatures and
protocol anomalies
Yes Yes
Create custom attack signatures Yes Yes
Access contexts for customization 500+ 500+
Attack editing (port range, etc.) Yes Yes
Stream signatures Yes Yes
Protocol thresholds Yes Yes
Stateful protocol signatures Yes Yes
Approximate number of attacks covered 6,700* 6,700*
Detailed threat descriptions and remediation/patch info Yes Yes
Enterprise security profiler Yes Yes
Create and enforce appropriate application-usage policies Yes Yes
Attacker and target audit trail and reporting Yes Yes
Deployment modes In-line or in-line TAP In-line or in-line TAP
Frequency of updates Daily and emergency Daily and emergency
Unified Threat Management/Content Security
5
Deep Inspection signature packs
4
Yes Yes
IPS (Deep Inspection firewall)
4
Yes Yes
Protocol anomaly detection Yes Yes
Stateful protocol signatures Yes Yes
IPS/Deep Inspection attack pattern obfuscation Yes Yes
ICAP antivirus redirection Yes Yes
Antispam Yes Yes
Integrated URL filtering Yes Yes
External URL filtering
6
Yes Yes
VoIP Security
H.323 ALG Yes Yes
SIP ALG Yes Yes
MGCP ALG Yes Yes
SCCP ALG Yes Yes
NAT for VoIP protocols Yes Yes
GPRS Security
10
GTP tunnels
7
200,000 400,000
GTP packet inspection (IPS or IDP) Yes Yes
*As of December 2011, there are 6,700 signatures with approximately 70 new signatures added monthly. Subscription to signature update service is required to receive new signatures.
Specifications (continued)