Professional Documents
Culture Documents
June 2006
as s
le m
su ry
ov ili
ed
ed
le it
ed
Re or
sc ab
Is viso
R e p lo
as
ed
W
Di ner
Ex
Ad
l
Vu
Getting Shorter
Worldwide
Juniper
Security Partner MSSP
Internal
Internal Research
Research Intelligence
Team
3 Daily
3rd Party Customer
rd
Party Customer
Security Updates
Security Teams
Teams Security
Security Team
Team
Juniper Products
Juniper Customers
11:50 AM
TippingPoint provides mixed messages on coverage
+1hr 33min
Malicious Activities/Attacks
x.x.x.A
Please connect to x.x.x.B
FTP Server (so unauthorized client can receive data)
1. User logs in using SSL VPN & deliberate or inadvertent attacks are launched
2. IDP detect the attack and block requests to the internal resources
3. IDP sends identifying data to SA SSL VPN gateway
4. Based on data from IDP, SA quarantine and notifies the user Quarantine
Identifying Data
Infected
Attack
Attack
Available IDP 3.2r2
2004
NSM
Satellite Office
Main Office
Service Provider
Large Enterprise Perimeter
Internal LAN
Enterprise Perimeter
Internal LAN
ISG 1000/2000
Enterprise
Perimeter
Med Bus IDP 1100@ 1 Gbps
Large BO
Enterprise
Perimeter
SMB IDP 600 @ 500Mbps
Branch
Office
IDP 200 @ 200Mbps
IDP 50 @ 50Mbps
Up to 1 Gbps
throughput
500,000 max
sessions
10 CG or 8 Fiber SX
+ 2 CG traffic, 1 CG
mgmt & 1 CG HA
ports
HA clustering option
Integrated bypass
1100F for CG traffic ports
state-sync
state-sync
N
S
M
Centralized
NSM Server Distributed ISG with IDP
Common User
Interface
IPS
Mgmt
IPS Mgmt
Satellite Office
Main Office FW Mgmt
Satellite Office
NSM
Main Office
Scheduled Security Updates Automatically update devices with new attack objects.
Scheduled Database Backups Copies of the NSM database may be saved on a daily basis.