ZIMOCOM

home > Products > WormBreaker IPS 3500 > Main Features

	Contents Filter(L7 Filter) - Detect of worm Virus(Sasser,Mydoom,Bagle, Netsky, Agobot, Sobig, codered,Nimda,Slammer.etc - Support user-defined pattern update - Easy rule creation with wizard function. - Automatic pattern Update - Installed ASIC engine, guaranuee same preformance in case of checking total payload.

	Prevention Virus Mail(option) - Attached file virus of system passing mails cure and delete - Support Transparent Application Gateway(Don’t need DNS change and routing information) - Use virus chaser vaccine,auto engine upgrade - Support SMTP, POP3 Services

	Session Shaping(Block P2P) - Anomaly Detection against abnormal new session - Correspond by block and watch within certain time against detected host - Block P2P Service that induce too many sessions - Restrict host that create too much session though limit number of sessionfrom each mternal host by certain time.

	Installation Type - Install and Recover without change of IP address system or Network structure - Since there are no MAC address, can’t know system exist or not - Don’t need change of internal user’s network configuration. - Increase security by hide WormBreaker from outside. - Fail over device support.
	Software - C/S Manager and Real-Time Secure OS (Packet process) )

	Operation and Management - Window base remote integrated management, Communication in code(tree structure) - Connects at the same time and manages several systems. - Provide Windows GUI base Remote Management Program (Client/Server) - Self system access control and defense - C/S Manager for Administrator

	Access Control - Access control by Module, Interface, Source IP, Destination IP, Services ,Time zone and Packet Length - No matter rules number provide same performance(Packet Classification algorithm) - Easy rule creation with wizard function. - Grouping function of Host, Network, services and User

	LOG - Packet dump and recording - Provide various logs about System setting, Alert and Intercepted service by user - Large volume log record with self system through PCI high speed Bus - MDB, MSDE 2000, MS SQL Server 2000 DB

☞ Attack Traffic and Hacking Prevention

	Strong administrator authentication
	DoS & DDoS Prevention (SYN flooding, UDP flooding, ICMP flooding, Smurf attack, Ping of Death, Land attack, TFN, Trin00, TFN 2K etc)
	Important file variation prevention by Integrity

☞ Forensic Analysis

	Analyze Raw Data with Network Monitor Analysis Tool

☞ Report and Statistic

	Make report with Crystal Report about Damaged host, Invaded host, Threat type and Period
	Report that use a Crystal Report
	Make statistic graph with ChartFX
	Translation to Word, PDF, Excel, Text format
	Reporting and output on victim host, Attack host, Attack Type, period condition.
	Because use a ChartFX statistics creation and output of graph form Real time/Time/Daily/Weekly/Monthly Top 10

☞ Alert

	Alert manager by Warning sound, Screen signal, E-mail and Mobile phone in case of Hard disk capacity exhausted, Authentification and Identification violation, Access control rule violation and Integrity violation
	No matter system error, send error massage use self SMS equipment

☞ Live Update

	Pattern Update
	Signature Update

☞ Structure

	Hybrid(Network Processor + General CPU + ASIC)
	Own security real time packet processing OS General Purpose CPU + Traffic Interception/Detection NPU + L7 Filtering(Content Processor) Each system separatively each function scatters and handles by concurrent operation ability so that can do maximization composition

☞ Guarantee of Performance

	Guarantee of wire speed at all packet sites

☞ Guarantee of Stability

	Internal FOD (Fail Over Device)
	Prevent network discontinuation by working as By-Pass mode in case of error occurrence
	Prevent network interruption through automatic change within 100ms