Technology
Microfine™ Granularity
Adaptive Threshold Estimation
Virtual Identifiers
Scan Prevention
Source Tracking
Protocol Anomaly
Custom ASICs
White Papers
FAQs
Overview Presentation
DoS Articles
 

Scan Prevention

IntruGuard Devices protects against Dark Address scans.

Dark address scans are a growing threat from hackers. These scans involve IP addresses that are not legitimate. While the format is valid, the actual values are not available from any Internet registry entity. These addresses are commonly referred to as “Bogons” and are used as the source address in many DDoS attacks. IntruGuard blocks dark address scans which exceed acceptable limits. Often these attacks are used to spread worms, not just bring servers off-line so mitigation of worm propagation is an added benefit.

Dark addresses can also be used to prevent dark-addresses in your network. You can identify which networks are dark in your space and if anyone tries to access that IP, it can be caught.

Country Code/IP Address Filters

(Geo Location Protection)

IntruGuard IG200/2000 feature a unique filtering capability through their hardware logic. This logic enables a network administrator to block a list of entire countries in a few clicks. Just click on a country using the GUI or CLI to either accept or block them in your appliance for both inbound as well as outbound traffic. You can select countries from a list. This Geo-Location feature allows organization to block or to apply additional in-depth application filtering on all traffic from countries that a network does not do business with, or that are known originators of malicious hacking (including US State Department identified terror sponsors). This feature dramatically saves bandwidth and lowers the risks of attacks.