|
McAfee Network Security Platform Overview:
When it comes to securing your network, point
products aren’t the most efficient or the most
accurate option. For intelligent, comprehensive
enterprise-level protection for every
network-connected devices, rely on McAfee Network
Security Platform. Our award-winning network
intrusion prevention system efficiently integrates
risk and threat knowledge. The result? Real-time,
actionable security.
|
Key Advantages: |
Enterprise-wide coverage
- A single industry-proven device provides comprehensive, proactive network and system security
McAfee SRM integration
- Integrates with McAfee Manager Vulnerability and ePO to give you on-demand visibility to critical host details and threat and risk relevance
Fast, accurate decisions
- Improve time-to-protection and time-to-confidence with real-time security that’s not just automated, but actionable
|
Reliable, network-class platforms; next-generation network protection
- Performance from 100 Mbps to 10 Gbps
- Highest port density
- IPv6 protection
Operational efficiency
- Collaboration between McAfee network, system, risk, and management products saves time and IT resources
|
Description:
How intelligent is your network security?
Is your enterprise is outgrowing your network
security appliances? Consider a smarter, more
efficient approach to security risk management.
McAfee® Network Security Platform risk-aware
network intrusion prevention gives you more
visibility and more relevant information, so that
you can make the right decisions and act quickly.
With the Network Security
Platform action-oriented security, you automatically
manage risk and meet compliance requirements—while
reducing IT resource dependency. With Network
Security Platform you get:
- A network-class platform
for any enterprise that
needs absolute security
confidence
- Collaborative security
for integrated, intelligent
protection to defend against
attacks and secure your
infrastructure
- Award-winning broad,
accurate, and efficient
protection for every
network-connected device
Network Security Platform is a single, integrated
solution that gives you insight into what's putting
your network and systems at risk and what you need
to do about it—in real time. The time it takes to
acknowledge an attack to its final resolution
shrinks dramatically. And the process is accurate
and complete.
Network Security Platform makes network security
smarter because it collaborates with your security
infrastructure and integrates with other McAfee
products:
- McAfee ePolicy
Orchestrator® (ePO™)
- McAfee Network Access
Control (MNAC)
- McAfee Vulnerability
Manager
Get more visibility into your network on demand
all in one place—including threat and risk
relevance. Add it all up, and you have prioritized,
pertinent information that enables Network Security
Platform to act on the most pressing issues.
The Network Security Platform portfolio of
high-performance, scalable appliances offers the
highest up-time and port density available. It’s
easy to manage, configure, administer, and monitor
all Network Security Platform IPS appliances across
widely distributed deployments with McAfee Network
Security Manager (formerly McAfee IntruShield®
Security Manager (ISM) ). Network Security Platform
is the perfect fit for Class A, mission-critical
global enterprise networks.
|
The Network Security Central Manager |
|
|
|
View the status of all management domains at a glance.
(Enlarge Image) |
Centralized policy definition and distribution provides flexibility and granular control.
(Enlarge Image) |
Benefits and Features:
Benefits:
- Comprehensive
enterprise-wide threat prevention
Block attacks before they
occur with a single industry-proven
security device—McAfee Network
Security Platform, your single
solution for proactive prevention
that protects every device on your
network; no other network security
offering safeguards your business
more broadly, accurately, and
efficiently
- Do more with less
Bridge network and system
with McAfee’s security risk
management (SRM) framework for
collaborative security
infrastructure that’s integrated for
maximum coverage and value; leverage
the benefits of your existing
security ecosystem; integrated
network and system security
infrastructure delivers efficient
collaboration that’s more than the
sum of its parts
- Maintain your
competitive advantage
Don’t let network threats
and exploits interrupt your business
operations and affect your
competitive advantage; our
high-performance network-class
security appliance protects your
evolving security and network needs
while delivering enterprise-level
performance, reliability, and
availability
- Smart network and system
security integration delivers
real-time security
Empower your enterprise
with real-time security decisions
for faster time to protection and
faster time to confidence; McAfee
Network Security Platform
collaborates with McAfee
Vulnerability Manager, ePolicy
Orchestrator, and NAC for enhance
protection, visibility, efficiency,
and value
- Smart network and system
security integration delivers
real-time security
Empower your enterprise with
real-time security decisions for
faster time to protection and faster
time to confidence; Network Security
Platform collaborates with McAfee
Vulnerability Manager, ePolicy
Orchestrator, and MNAC for enhanced
protection, visibility, efficiency,
and value
|
Features:
- 10-Gigabit Ethernet
performance
Address your evolving security and
network needs with affordable
network-class performance and
reliability; McAfee Network Security
Platform portfolio of
high-performance, purpose-built
platforms protect all locations-from
the network core to branch offices
- Award-winning, network-class
protection for absolute security
confidence
Rely on Network Security Platform for
your enterprise network; Network
Security Platform exceeds Telcordia
standards; it's the only IPS appliance
to hold the NSS Group's Multi-Gigabit
IPS certification; protect all
network-connected devices with a
combination of IPS and internal firewall
for overlapping, integrated protection;
defend against current and future
threats with dynamic threat and
vulnerability updates
- Real-time risk-aware IPS
Empower yourself to make more informed
security decisions through integration
with McAfee Vulnerability Manager, which
provides real-time threat relevancy on
demand; highly accurate risk relevancy
and visibility provides actionable
security intelligence
- System-aware IPS with
McAfee ePO™ integration
Leverage your security
investment with McAfee SRM; this
integration of your network and
system security infrastructure
results in the only system-aware IPS
for efficient security collaboration
that gives you a clear picture of
all system and network threats;
through integration with McAfee
ePolicy Orchestrator® (ePO™), you
get real-time visibility to
actionable system host details, as
well as the top host IPS, virus, and
spyware events
- Dynamic network access
control
Extend the reach and depth
of network enforcement with dynamic,
zero-day access control; combined
with the Network Security Platform
on-board host quarantine capability,
McAfee Network Access Control (MNAC)
provides continuous pre- and
post-admission control for managed,
unmanaged, and unmanageable hosts
|
Network Security Platform Specifications:
Which Network Security Platform is right for
you?
|
McAfee Network Security Platform Specifications |
| |
 |
 |
 |
 |
| Sensor Hardware
Components |
M-8000 |
M-6050 |
I-4010 |
I-4000 |
| Network location |
Core |
Core |
Core |
Core |
| Performance throughput |
Up to 10 Gbps |
Up to 5 Gbps |
Up to 2 Gbps |
Up to 2 Gbps |
| Maximum concurrent
connections |
4,000,000 |
2,000,000 |
1,000,000 |
1,000,000 |
| Ports |
| Gigabit Ethernet detection
ports |
16 |
8 |
12 |
4 |
| 10 Gigabit Ethernet |
12 |
8 |
- |
- |
| Fast Ethernet (FE)
detection ports |
- |
- |
- |
- |
| Dedicated Fast Ethernet
(FE) response ports |
1 |
1 |
2 |
2 |
| Dedicated Fast Ethernet
(FE) management ports |
Yes |
Yes |
Yes |
Yes |
| External fall-open control
ports |
14 |
8 |
6 |
2 |
| Console and aux ports |
Yes |
Yes |
Yes |
Yes |
| Built-in network taps |
No |
No |
No |
No |
| Fail-open |
Optional |
Optional |
Optional |
Optional |
| Fall-close |
Yes |
Yes |
Yes |
Yes |
| Mode of
Operation |
| Span port monitoring |
Yes |
Yes |
Yes |
Yes |
| Tap mode |
Optional |
Optional |
Optional |
Optional |
| In-line mode |
Yes |
Yes |
Yes |
Yes |
| Port clustering |
Yes |
Yes |
Yes |
Yes |
| No. of virtual IPS system |
1,000 |
1,000 |
1,000 |
1,000 |
| Traffic monitoring on
active-active links |
Yes |
Yes |
Yes |
Yes |
| Traffic monitoring on
active-passive links |
Yes |
Yes |
Yes |
Yes |
| Monitoring of asymmetric
traffic routing |
Yes |
Yes |
Yes |
Yes |
| High
Availability |
| Redundant power |
Yes (optional) |
Yes (optional) |
Yes (optional) |
Yes (optional) |
| Device failure detection |
Yes |
Yes |
Yes |
Yes |
| Link failure detection |
Yes |
Yes |
Yes |
Yes |
| Physical |
| Dimensions |
2x 2RU Rack mountable
16.75 (W) x 3.05 (H) x 30.00 (D) each |
2RU Rack mountable 16.75
(W) x 3.05 (H) x 30.00 (D) each |
2RU Rack mountable 17.44
(W) x 3.44 (H) x 23.00 (D) each |
2RU Rack mountable 17.44
(W) x 3.44 (H) x 23.00 (D) each |
| Weight |
94 lbs. (2x47) |
47 lbs. |
47 lbs. |
47 lbs. |
| Power |
100-240VAC
(50/60Hz) |
| Power consumption |
2x450w |
450w |
350w |
350w |
| Temperature |
0o to 35o C (operating)
-40o to 70o C (non-operating) |
0o
to 40o C (operating)
-40o to 70o C (non-operating) |
| Relative humidity
(non-condensing) |
Operational: 10 percent to 90 percent
Non-operational: 5 percent to 95 percent |
| Altitude |
0
to 10,000 feet |
| Safety certification |
UL 1950, CSA-C22.2 No. 950, EN-60950, IEC
950, EN 60825, IEC 60825, 21CFR1040 CB
license and report covering all national
country deviations. |
| EMI certification |
FCC Part 15, Class A (CFR 47) (USA) ICES-003
Class A (Canada), EN55022 Class A (Europe),
CISPR22 Class A (Int'l) |
| |
| |
 |
 |
 |
 |
| Sensor Hardware
Components |
I-3000 |
I-2700 |
I-1400 |
I-1200 |
| Network location |
Core |
Perimeter |
Branch office/perimeter |
Branch office |
| Performance throughput |
Up to 1 Gbps |
Up to 600 Mbps |
Up to 200
Mbps |
Up to 100 Mbps |
| Maximum concurrent
connections |
500,000 |
250,000 |
80,000 |
40,000 |
| Ports |
| Gigabit Ethernet detection
ports |
12 |
2 |
- |
- |
| 10 Gigabit Ethernet |
- |
- |
- |
- |
| Fast Ethernet (FE)
detection ports |
- |
6 |
4 |
2 |
| Dedicated Fast Ethernet
(FE) response ports |
2 |
3 |
1 |
1 |
| Dedicated Fast Ethernet
(FE) management ports |
Yes |
Yes |
Yes |
Yes |
| External fall-open control
ports |
6 |
1 |
- |
- |
| Console and aux ports |
Yes |
Yes |
Yes |
Yes |
| Built-in network taps |
No |
Yes
(for FE ports) |
Yes |
Yes |
| Fail-open |
Optional |
Yes
(for FE ports) |
Yesl |
Yes |
| Fall-close |
Yes |
Yes |
Yes |
Yes |
| Mode of
Operation |
| Span port monitoring |
Yes |
Yes |
Yes |
Yes |
| Tap mode |
Optional |
Yes
(for FE ports) |
Yesl |
Yes |
| In-line mode |
Yes |
Yes |
Yes |
Yes |
| Port clustering |
Yes |
Yes |
Yes |
Yes |
| No. of virtual IPS system |
1,000 |
100 |
32 |
16 |
| Traffic monitoring on
active-active links |
Yes |
Yes |
Yes |
Yes |
| Traffic monitoring on
active-passive links |
Yes |
Yes |
Yes |
Yes |
| Monitoring of asymmetric
traffic routing |
Yes |
Yes |
Yes |
Yes |
| High
Availability |
| Redundant power |
Yes (optional) |
Yes (optional) |
No |
No |
| Device failure detection |
Yes |
Yes |
Yes |
Yes |
| Link failure detection |
Yes |
Yes |
Yes |
Yes |
| Physical |
| Dimensions |
2RU Rack mountable
17.44 (W) x 3.44 (H) x 23.00 (D) each |
2RU Rack mountable
17.44 (W) x 3.44 (H) x 23.00 (D) each |
1RU Rack mountable
17.32 (W) x 1.65 (H) x 10.5 (D) each |
1RU Rack mountable
17.32 (W) x 1.65 (H) x 10.5 (D) each |
| Weight |
47 lbs. |
47 lbs. |
17 lbs. |
15 lbs. |
| Power |
100-240VAC
(50/60Hz) |
| Power consumption |
350w |
250w |
100w |
100w |
| Temperature |
0o
to 40o C (operating)
-40o to 70o C (non-operating) |
| Relative humidity
(non-condensing) |
Operational: 10 percent to 90 percent
Non-operational: 5 percent to 95 percent |
| Altitude |
0
to 10,000 feet |
| Safety certification |
UL 1950, CSA-C22.2 No. 950, EN-60950, IEC
950, EN 60825, IEC 60825, 21CFR1040 CB
license and report covering all national
country deviations. |
| EMI certification |
FCC Part 15, Class A (CFR 47) (USA) ICES-003
Class A (Canada), EN55022 Class A (Europe),
CISPR22 Class A (Int'l) |
|
Built-in Next Generation Features |
| Sensor
Software
Components |
M-8000 |
M-6050 |
I-4010 |
I-4000 |
I-3000 |
I-2700 |
I-1400 |
I-1200 |
| Stateful traffic
inspection |
IP defragmentation and TCP
stream reassembly |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
| |
Detailed protocol analysis |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
| |
Asymmetric traffic
monitoring |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
| |
Protocol normalization |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
| |
Advanced evasion protection |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
| |
Forensic data collection |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
| |
Protocol tunneling |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
| |
Protocol discovery |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
| |
Stacked VLAN |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
| Signature detection |
User-defined signatures |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
| |
Real-time signature updates |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
| Anomaly detection |
Statistical anomaly |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
| |
Protocol anomaly |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
| |
Application anomaly |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
| DoS detection |
Threshold-based detection |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
| |
Self-learning profile-based
detection |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
| |
Maximum DoS profiles |
5,000 |
5,000 |
5,000 |
5,000 |
5,000 |
300 |
120 |
100 |
| Intrusion prevention |
Stop attacks in progress in
real time |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
| |
Drop attack
packets/sessions |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
| |
Host quarantine |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
| |
Initiate TCP reset, ICMP
unreachable |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
| |
Packet logging |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
| |
Automated and
user-initiated prevention |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
| Encrypted attack
protection |
Stops encrypted attacks in
real time |
No |
No |
Yes |
Yes |
Yes |
Yes |
No |
No |
| Internal firewall |
Blocks unwanted and
nuisance traffic |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
| |
Granular security policy
enforcement |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
| High availability |
Stateful failover |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes (for FE
ports) |
Yes |
Yes |
| Management |
Command line interface
(console) |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
| |
Manager communication |
Secure channel |
Secure channel |
Secure channel |
Secure for all
channel |
Secure for all
channel |
Secure for all
channel |
Secure for all
channel |
Secure for all
channel |
McAfee Network Security Platform M-Series:
Multi-gigabit security and performance for next-generation
10 Gigabit Ethernet networks
Award-winning, industry-leading McAfee® Network Security Platform (formerly McAfee IntruShield®) extends
network intrusion prevention system (IPS) technology to protect today’s next-generation 10 Gigabit Ethernet
(10GigE) networks. Its extensible and integrated architecture delivers enterprise-wide protection and compliance
that brings reliable, high-performance intrusion prevention to data center and service provider networks.
|
Key Advantages: |
Next-generation network protection
- Up to 10 Gbps performance
- 10 Gigabit Ethernet connectivity
- Highest port density
McAfee SRM
- Integration with McAfee Vulnerability Manager and McAfee ePO goes beyond intrusion detection and
intrusion prevention to provide critical host details, on-demand threat and risk relevance, and host quarantine
|
McAfee collaborative security infrastructure
- McAfee’s collaborative SRM framework bridges network and system security to help you leverage the benefits of your existing security ecosystem to do more with less
Reliable, network-class appliance
- Protects your evolving security and network needs, while delivering network-class performance, reliability,
and availability
|
Enterprise-wide Network Security Platform
McAfee Network Security Platform delivers unprecedented knowledge-driven security. Together with McAfee’s security
risk management (SRM) framework, Network Security Platform collaborates with McAfee Vulnerability Manager (formerly McAfee
Foundstone® Enterprise) McAfee ePolicy Orchestrator® (ePO™), and McAfee Network Access Control (MNAC) to provide
intelligent and real-time security that’s exponentially more accurate and efficient than traditional point products.
Network Security Platform is simply the world’s most advanced and comprehensive network intrusion prevention solution.
Its action-oriented security allows you to automatically manage risk and meet compliance—while reducing IT resource dependency.
Its network-class platform is for any enterprise that needs absolute security confidence, up to 10 Gbps performance, and collaborative
security for integrated and intelligent enterprise-wide protection that prevents attacks and secures your infrastructure. No other network
security solution protects your business more broadly, accurately, and efficiently.
High-performance,
network-class IPS platforms |
McAfee Network Security Platform M-8000 |
McAfee Network Security Platform M-6050 |
Award-winning Protection
Network Security Platform’s integrated protection and ASIC-based, easy-to-use platform delivers broad asset protection, maximized business
availability, reduced liability, and security cost avoidance. Network Security Platform’s highly accurate prevention technology provides
built-in protection against a wide range of threats and attacks, including:
- Zero-day attacks, cyber-attacks, and malware
- Spyware, phishing, and other unwanted programs
- Voice over IP (VoIP) threats and vulnerabilities
- Denial of service (DoS), distributed DoS (DDoS), and SYN flood attacks
- Encrypted attacks, worms, Trojans, and evasions
Instant messaging and peer-to-peer applications
- Protocol-based dynamic rate limiting
- Infrastructure quality of service
Knowledge-driven Network Security, Real-time Security Confidence
Smart network and system security integration delivers real-time security that’s not just automated, but actionable.
With the click of a mouse, you’ve got intelligent IPS that provides critical host details, top host intrusion and spyware
attacks, and accurate threat and risk relevance, on demand. A real-time security solution empowers real-time security decisions,
giving you:
- Faster time-to-protection with system-aware ePO integration, built-in host quarantine, and adaptive rate limiting
- Faster time-to-confidence with a right-click to Vulnerability Manager scanning support, built-in host quarantine, and adaptive rate limiting
Advanced Enforcement
- Adaptive rate limiting - Real-time, adaptive protocol rate shaping allows you to easily and effectively control your network bandwidth while blocking unwanted and risky applications
- Comprehensive threat prevention - Proactively protects the network from known, zero-day, DoS, and encrypted attacks, as well as threats like spyware, VoIP vulnerabilities, malware, IM, botnets, network worms, Trojans, and peer-to-peer applications
- Built-in host quarantine - Real-time quarantine protection provides automated host quarantine
Network Security Platform Security Manager's clean and simple interface
|
McAfee
Network Security Platform
