Technology
Microfine™ Granularity
Adaptive Threshold Estimation
Virtual Identifiers
Scan Prevention
Source Tracking
Protocol Anomaly
Custom ASICs
White Papers
FAQs
Overview Presentation
DoS Articles
 

Microfine™ Granularity

Preventing DoS attacks requires maintaining highly granular statistics at Layers 2, 3, 4 and 7. It is essential to track individual sources, destinations, protocols, connections and ports that can run in millions.

Unlike firewalls and routers which are designed to operate on traffic flows, the IG200 and IG2000 are built from the ground up to provide the MicrofineTM Granularity required to protect system addresses, protocols and ports from rate-based attacks.

IntruGuard's custom hardware design monitors thresholds for all traffic it sees on Layers 2, 3, 4 and 7. It measures byte and packet counts, state transitions, fragments, checksum, flags, new connections, and address pairs. Thresholds can be set on any TCP port number or UDP byte count to rate limit traffic for particular systems or applications.

The IG200 and IG2000 monitor dozens of parameters to analyze subtle changes in the behavior of network traffic rate to recognize and prevent attacks

Click here to view larger image