It detects intruders by checking the identifiers of suspicious activities against the signatures of known malicious activities, which are included in a signature file. For the protection against intruders to be effective, an IPS must have a mechanism to keep it constantly updated. Similarly, the IPS uses techniques used by the pre-processing modules that can distinguish suspicious traffic from normal traffic. The system does this using statistics and probability methods.
Functionality of the Panda GateDefender Integra IPS
- The device incorporates an IPS that detects intrusion attempts and displays warnings or blocks them based on a series of rules defined for this purpose. This means your network is protected from unauthorized access.
- The IPS in Panda GateDefender Integra detects intrusion attempts using an intrusion signature file that is automatically updated every 90 minutes.
- Panda GateDefender Integra scans the protocols IP, ICMP, TCP and UDP.
- The administrator can configure automatic blocking of the intrusion attempts detected and specify maximum values and thresholds for each rule. This results in fewer false positives.