Secure IP Address Management Layer 2 Network Access Control Solution



Similar documents
Effective Security in BYOD Environment 如 何 提 高 自 攜 裝 置 的 有 效 保 安. Roger Lee Presentation for ITRC Forum Dec 2013

IPScan V3.5 User s Guide

ForeScout CounterACT. Device Host and Detection Methods. Technology Brief

InfoExpress Cyber Gatekeeper. How to quote? Günter Neuleitner. März 2009

DIR-806A. Wireless AC750 Multi-Function Router. DUAL BAND Simultaneous operation in 5GHz band and 2.4GHz band, a/b/g/n/ac compatible

150Mbps Wireless N Mini Pocket Router

Gigabit Multi-Homing VPN Security Router

Custom Integration Solutions

SOHOware Long Reach Ethernet (LRE) Solution

150Mbps Wireless N Mini Pocket Router

COMPUTING INDUSTRIAL EMBEDDED RUGEDIZED 19 INDUSTRIE PC

AC 750. Wireless Dual Band 4G LTE Router. Highlights

The Ultimate WLAN Management and Security Solution for Large and Distributed Deployments

Advanced Data Sheet AC500

Quick Installation Guide 24-port PoE switch with 2 copper Gigabit ports and 2 Gigabit SFP ports (af Version 15.4W)

Gigabit Multi-Homing VPN Security Router

AC1200 Multi-Function Concurrent Dual-Band Gigabit Wi-Fi Router

The self-defending network a resilient network. By Steen Pedersen Ementor, Denmark

AP-GSS3000 TM 512Ch GSM SIM Server

AP-GSS1500 TM 256Ch GSM SIM Server High Performance GSM SIM Server Solution

AC 750. Wireless Dual Band ADSL2+ Modem Router. Highlights

Pronto Cloud Controller The Next Generation Control

AV1200 TL-PA8030P KIT. 3-Port Gigabit Passthrough Powerline Starter Kit. Highlights

AC Wireless Dual Band ADSL2+ Modem Router. Highlights

Ethernet Link SGI-2424

NXC5200/ NWA5000-N Series Wireless LAN Controller/ a/b/g/n Managed Access Point

Cloud-based Wireless LAN for Enterprise, SMB, IT Service Providers and Carriers. Product Highlights. Relay2 Enterprise Access Point RA100 Datasheet

Gigabit SSL VPN Security Router

Deploy and Manage a Highly Scalable, Worry-Free WLAN

The All-in-One, Intelligent NXC Controller

Ethernet Link SGI-4844F

2.4GHz / 5GHz Dual CPU 600Mbps 11N AP/Router

Gigabit Content Security Router

Centralized Orchestration and Performance Monitoring

ESR7550 KEY FEATURES PRODUCT DESCRIPTION

AC 750. Wireless Dual Band Router. Highlights

Output Power (without antenna) 5GHz 2.4GHz

All You Wanted to Know About WiFi Rogue Access Points

EAP300. Long Range Ceiling Mount Access Point PRODUCT OVERVIEW

YO-301AP POE AP Datasheet

VRGIII N Series Triple Play Gateway

AC Touch Screen Wi-Fi Gigabit Router. Highlights

AC Wireless Dual Band Gigabit Router. Highlights

5GHz 300Mbps a/n Wireless Outdoor Access Point

EAP300. Long Range Ceiling Mount Access Point PRODUCT OVERVIEW

EAP350. Long Range Ceiling Mount Access Point PRODUCT OVERVIEW

Load Balance Router R258V

WBS210/WBS510 Datasheet

Paul Cochran - Account Manager. Chris Czerwinski System Engineer

How To Get A Wireless Router For Free From $99.99 On Amazon.Com (For A Limited Time) (For An Extra $99) ( For A Long Distance) (On A 2.99/99) For A Year

AC Wireless Dual Band Gigabit Router. Highlights

Servers, Clients. Displaying max. 60 cameras at the same time Recording max. 80 cameras Server-side VCA Desktop or rackmount form factor

AC 750. Wireless Dual Band ADSL2+ Modem Router. Highlights

Cisco RV082 Dual WAN VPN Router Cisco Small Business Routers

Network Access Control in Virtual Environments. Technical Note

Pleiades USB/LAN. User Manual. & Installation Guide. External Storage Enclosure for 3.5 Hard Drive. v1.1

TABLE OF CONTENTS NETWORK SECURITY 1...1

3G Wireless-N Smart Energy Gateway

Application-Centric WLAN. Rob Mellencamp

AC750 Multi-Function Concurrent Dual-Band Wi-Fi Router

300Mbps Wireless N Gigabit Ceilling Mount Access Point

RedRapid X WIRELESS MODEM ROUTER. Quick Installation Guide (DN-7060)

QuickSpecs. HP Compaq t5525 Thin Client. Overview

Secure, Remote Access for IT Infrastructure Management

Sophos SG Series Appliances

ESR (Go Green Series) Wireless-N Broadband Router / AP / Repeater. 2.4 GHz b/g/n 300 Mbps

Bypassing Network Access Control Systems

CMP-102U. Quick Installation Guide

EAP350 EAP350. Long Range Ceiling Mount Access Point PRODUCT OVERVIEW

AC1750 Dual Band Wireless Router with StreamBoost Technology. TEW-824DRU (v1.0r) TEW-824DRU

ENHWI-N n Wireless Router

Addressing BYOD Challenges with ForeScout and Motorola Solutions

300Mbps Wireless N Gigabit Ceilling Mount Access Point

GV-Data Capture V3 Series User's Manual

Cisco WAP4410N Wireless-N Access Point: PoE/Advanced Security. Cisco Small Business Access Points

Arrow ECS sp. z o.o. Oracle Partner Academy training environment with Oracle Virtualization. Oracle Partner HUB

M3 ORANGE single-slot Cradle. User Guide. Product Number: A-1CR-US0D-030-R00, A-1CR-U0ED-030-R00. Compatible Device(s): M3 ORANGE

Network Virtualization Network Admission Control Deployment Guide

ForeScout CounterACT Endpoint Compliance

ESR b/g/n SOHO Router

Korenix Embedded Systems

Public Internet Access Done the Right Way

D-Link Central WiFiManager Configuration Guide

AC Wireless Tri-Band Gigabit Router. Highlights

ESR b/g/n SOHO Router

running operation mode painless TECHNICAL SPECIFICATION WAN/LAN: One 10/100 Fast Ethernet RJ-45 WPS (WiFi Protected Setup) WAN (Internet connection)

The All-in-One, Intelligent WLAN Controller

802.11b/g/n SOHO Router 2.4GHz 150Mbps 11N AP/Router

Chapter 5 Cubix XP4 Blade Server

Product Specifications

Cisco Nexus 7000 Series Supervisor Module

APPENDIX 3 LOT 3: WIRELESS NETWORK

Cisco Small Business Managed Switches

LAN M2M Device. AddPac Technology. 2014, Sales and Marketing.

VIA CONNECT PRO Deployment Guide

750Mbps ac Wireless Broadband Router


XP5620. Fee Computer / Validator. The new generation of touch screen Fee Computer

LB-IPC. High Performance, Ultra Low Noise Low Power Consumption. Features. Applications

Cisco WAP4410N Wireless-N Access Point: PoE/Advanced Security Cisco Small Business Access Points

Transcription:

Secure IP Address Management Layer 2 Network Access Control Solution Integrated DHCP & IP Address Management Solution Providing Superior Layer 2 Network Access Control

Solution Overview Layer 2 Network Access Control Solution IPScan is the only solution that provides complete control over all IP/MAC access onto the network. IPScan automatically detects and documents every ethernet and IP address that attempts the network access, and enforces centrally defined policies in real-time, with the ability to block unauthorized devices from communicating on the network. IPScan helps secure networks against internal breaches, prevents inadvertent network disruptions from address conflicts, mitigates the risks of non-compliance with regulatory requirements for securing and controlling customer, corporate financial and gaming operation information, and increases IT s operational efficiency in delivering information service. IPScan is deployed by hundreds of large enterprises, service providers, governments and military agencies and educational institutions. IPScan consists of four components: (1) administrative console software, (2) centralized server, (3) database, and (4) distributed hardware; probes. IPScan Components 1. IPScan Console Installed on the IT manager s PC, it connects to the IPScan Server to view, monitor and define IP/MAC policies. 2. IPScan Server Installed in the main data center, it communicates with probes to receive and store collected data and forwards the IP policies defined by IT manager. It supports MS-SQL 2000~2012 Server, Oracle and MySQL. 3. IPScan Database Collected data and policies are stored in the RDBMS. MS-SQL 2000~2012 Server, Oracle and MySQL Server are compatible. DB Server and IPScan Server can be installed in the same hardware platform if there are fewer than 5,000 active IP s. For more than 5,000 active IP networks, a separate hardware platform is required for each. 4. IPScan Probe A software-technology-embedded hardware probe designed to control small to large size network. Implements the policies defined by the IPScan Console Supports 802.1q to manage multiple VLANs from a single device. - Built-in DHCP server

Benefits If You have these kind of issues, we can make it better IPAM IP/MAC IP Address Management Manually update daily changed IP allocation or online status Difficult to manage real-time online IP/MAC status Unable to prevent IP duplication in real-time Unable to control unauthorized IP/MAC in use DHCP server DHCP IP Management IP allocation failure in rush hour High cost for HA or/and relay server Monitoring only DHCP IP pool Unable to manage static IP range Unable to manage the IPs of server or network devices Unknown DHCP server allocates unauthorized DHCP IPs NAC Network Access Control Difficulty of implementing Installing PC agent program IP-phone, etc. High deployment cost Changing network devices Unable to control non-supported O/S such as network printer Not easy to control non 802.1x devices Why IPScan XE for Your IP Managements? LAN access security : Non-802.1x based. Agentless. No port mirroring required, Out of band control Less cost, less complexity, easy operation Unique static IP address management : IP/MAC binding, unused IP blocking, IP change control IPAM with IP control, IP protection Secure DHCP server : Non-DHCP client detection and blocking. Static & DHCP mixed environment management. Unauthorized DHCP client management Advanced DHCP server with non-dhcp client control ARP based real-time monitoring and control : Easy-to-deploy IP/MAC monitoring / control for any Layer 2 environment (Just connect to any switch / hub port) Vendor independent, device independent (Unmanaged switch, managed switch, HUB, AP, PC with PC Firewall) Multi-VLAN environment supported (Using 802.1q) High capacity : HA support, 100,000 devices control in a Server IP Management Experts

Solution Review IPAM + Agentless NAC + DHCP server Major Functions Easy Implementation No need to apply PC based agent program No need of network upgrade (802.1x) Easy control of user interface Supports 802.1q to manage multi-vlan environment Providing advanced DHCP server features Embedded DHCP function Controls entire IP devices regardless of IP management environment Layer 2 Access Control Solution Controls devices regardless of operating system Agentless control solution Controls network devices (Switch, Router, IPT, etc.) Real-time Management Real-time IP/MAC inventory status Real-time alarming events Real-time blocking and authentication Real-time IP conflict monitoring

Layer 2 Network Access Control Solution IPScan XE Features Dynamic IP management - secure DHCP server Quarantine unauthorized DHCP client Network access time control for visitor MAC address filtering for access security Static IP address control in DHCP pool Unknown DHCP server detection Secure IP/MAC management - Static IP address management Real-time IP/MAC status update for entire network: online/offline/unused/expired, IP change, new IP, new MAC, IP conflict, etc. Unused IP reservation IP/MAC binding Group & description LAN access control & L2 security Appliance based NAC policy enforcer (non 802.1x) Improve vulnerability management process L2 Security : controlling access by MAC address filtering Manual / automatic network access control : IP blocking / MAC blocking Increase wireless network access security (AP bridge mode) IP conflict management IP protection on mission critical devices Automatic IP/MAC inventory Online, offline, unused IP/MAC address Protection from IP Conflicts IP:192.168.100.10 Factory Line IP Device IP:192.168.100.11 Internet Banking Server IP:192.168.100.12 Network IP Device Access Network Blocking Access Network Blocking Access Network Blocking IP:192.168.100.10 IP:192.168.100.11 IP:192.168.100.12 IP Management Experts

Agentless Network Access Control with Secure IPScan is an IP/MAC resource management and network security solution that enables IT managers to automate the IP/MAC resource management process. IPScan controls network access of any device that uses IP addresses. Utilizing a powerful blocking technology, IPScan ensures that unknown and unauthorized IP/MAC addresses are prevented from accessing the network. Network Diagram Router Branch Office A IPScan Probe IPScan Probe 600G Branch Office B Access Point Switch IPScan Probe Unauthorized User Branch Office C Blocking Server IPScan Probe Attempt to Change IP Guest Authentication Request ViaScope Inc. 74, Seocho-daero 46-gil, Seocho-gu, Seoul, 137-873, Republic of Korea. Tel. +82-2-3412-9700 Fax. +82-2-3412-9800 www.viascope.com / www.scope.co.kr

Specification IPScan Probe 50G IPScan Probe 100C ATMEL ARM9 400MHz Samsung ARM 667MHz 128MBytes DDR2 RAM 128MBytes DDR RAM 4GBytes T- 4GBytes T- 1 x RJ-45 (Ethernet 10/100Mbps) 1 x RS-232 (DB-9) Console Port 1 x RJ-45 (Ethernet 10/100/1000Mbps) 1 x RS-232 (DB-9) Console Port 104 (W) x 29 (H) x 94(D) 427 (W) x 44 (H) x 183 (D) 300g 1.9Kg Operating Environment Temperature 0~40, Humidity 0~ 90% 4W, 5V Adapter (AC 100~240V) Operating Environment Temperature 0~40 Humidity 0~ 90% External Adapter Input : AC 100~240V, 50~60Hz Output : DC 5V/0.8A 10W AC 100~240V, 50~60Hz Linux Kernel 2.6.x Linux Kernel 3.9.x IPScan Probe 100G IPScan Probe 200G Samsung ARM 667MHz Samsung ARM 800MHz 128MBytes DDR RAM 256MBytes DDR RAM 4GBytes T- 4GBytes T- 1 x RJ-45 (Ethernet 10/100/1000Mbp) 1 x RS-232 (DB-9) Console Port 2 x RJ-45 (Ethernet 10/100/1000Mbps) 1 x RS-232 (DB-9) Console Port 170 (W) x 44 (H) x 183 (D) 170 (W) x 44 (H) x 183 (D) 1.0Kg 1.0Kg Operating Environment Temperature 0~40, Humidity 0~ 90% Operating Environment Temperature 0~40, Humidity 0~ 90% 10W 10W AC 100~240V, 50~60Hz AC 100~240V, 50~60Hz Linux Kernel 3.9.x Linux Kernel 3.9.x IPScan Probe 600G IPScan Probe 1000R Intel ATOM Dual Core 1.8GHz Intel Dual Core 1.8GHz 1GB DDR3 RAM 1GB DDR3 RAM 2GBbyte CF Module 2GBbyte CF Module 6 x RJ-45 (10/100/1000Mbps Base TX) Ports 1 x RJ45 (to RS-232) Console Port, 2 x USB 2.0 2 x Fiber-optic SFP module slots 6 x RJ-45 (10/100/1000Mbps Base TX) Ports 430 (W) x 44 (H) x 285 (D) 1 x RJ45 (to RS-232) Console Port, 2 x USB 2.0 4.2Kg 430 (W) x 44 (H) x 385 (D) Operating Environment Temperature : 0~40 Humidity 0~ 95% Operating Environment 5.6Kg Temperature 0~40, Humidity 0~ 90% 60W 74W AC 100~ 240V, 50~ 60Hz AC 100~ 240V, 50~ 60Hz Linux Kernel 2.6.x Linux Kernel 2.6.x Above H/W specifications are subject to change without notice.

ViaScope Inc. 74, Seocho-daero 46-gil, Seocho-gu, Seoul, 137-873, Republic of Korea. Tel. +82-2-3412-9700 Fax. +82-2-3412-9800 www.viascope.com

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information