HiGuard Pro SPI (Stateful Packet Inspection) provides DoS detection and prevention against some popular attack modes, such as SYN flooding, port scans, and packet injection. When the unusually high rates of new connection are detected, the system will issue an alert notification or block anomalous session. In addition, HiGuard Pro SPI protects against packet-injection attacks by checking several components of TCP and UDP sessions.
￭ IP V4 / V6 Dual Mode
IPv4 address exhaustion has occurred sooner than being predicted. To cope with IPv4 depletion, HiGuard Pro provides a solution that covers both IPv4 and IPv6 network and can be configured for IPv4 only, IPv6 only, or to support both protocols simultaneously. Also, HiGuard Pro has been certificated with “IPv6 Ready” logo by the IPv6 forum.
￭ ARP Spoofing Defense
It has been the most difficult for UTM to detect broadcast package sent out on the local network such as ARP spoofing and private DHCP server because of congenital defects of communication protocols. HiGuard Pro detecting appliances can effectively defect who is the man-in-the-middle attack. With a Co-defense switch, physical IP destination can be marked.
￭ Content Filtering
IT administrator can remove specific undesirable objects from HTTP traffic, such as ActiveX objects or Java applets that may pose a security threat in certain situations. In addition, HiGuard Pro will block vicious websites which may cause damage to PCs according to the Black-list. IT administrator can also add both keywords and URLs of specified websites or webpages to Blacklist and Whitelist.
￭ Load Balance
HiGuard Pro provides outbound load balancing, which distribute the traffic across available links. When one of the links is down, the other link will take over the work and handle the traffic until troubled link returns to normal, in manual or auto mode.
HiGuard Pro provides Smart QoS solution, offering more agile bandwidth management for industries and organizations. All the servers and users can be configured their minimum and maximum bandwidth; the remaining bandwidth will be allotted to the other users according to their configuration.
￭ Application Access Control
To prevent data leakage and ensure regulatory compliance, the access to applications which unrelated to work should be controlled during working hours. HiGuard Pro can block file sharing via P2P applications in addition to IM access controls, preventing data leakage and helping organizations and industries meet the requirements of regulatory compliance.
In most industries and organizations, internet access control is indispensible for defending network security. HiGuard Pro offers the best security protection that manages and controls users who try to access internet. When a user first opens a web browser and begins to access an internet site they will be prompted to authenticate before using internet service. HiGuard Pro offers two authentication methods: Active Directive (AD), and POP3.
￭ Anomalous IP Analysis
HiGuard Pro provides the excellent function of anomaly traffic detection because the appliances can detect outgoing / incoming concurrent sessions, upload flow and download flow. If employee are violating the rules and exceeding more downloading flow, they will be logged and blocked. In addition, IT administrator is allowed to define the trusted IP list. If an IP address is added to the trusted IP list, then it will not be detected, and the selected action will not be implemented to that IP address as well.
VPN, Virtual Private Network, supplies private connectivity over public lines. Deploying VPNs enables businesses of any size to deliver secured connectivity for mobile employees, branch offices, and clients.
IPsec VPN securing the site-to-site connections allows the head quarter and its branch offices on the same network and sharing resources among offices. For industries, IPSec is the best way to connect for transmitting encrypted data over the network.
PPTP VPN offers point to point connection for employee at home. PPTP VPN enables employee get access to industry’s network securely and easily.
Web VPN ( or SSL VPN ) offers you an easy VPN access to your headquarters simply through a web browser. Offsite users may create VPN connections at anytime from anywhere with ease.
CMS (Central Management System) provides a useful management and monitoring solution, which allows industries to manage distributed appliances installation across remote offices and clients.
￭ Diagnostic Tool
HiGuard Pro provides diagnostic tools that help IT administrator find out network problem without wasting time, including Ping, Traceroute, DNS Query, Server link, etc.
HiGuard Pro records mail with attachments through mail server and gateway. The server supports eml documental storage which is easy to be read or searched in any operating system.
￭ AP Control
HiGuard Pro can be a unified controller that is responsible for configuration, control, and management of several HiGuard HOME/SOHO (wireless routers). Each HiGuard wireless router integrates flows to ShareTech UTM. On the UTM management interface, administrators can easily monitor and manage operation (functioning or malfunction), uploading/downloading flow, and concurrent users on every AP (MAC address included).