New multi-gigabit IDS/IPS analyzes VoIP traffic

Enterasys Networks announced a new Dragon Multi-Gigabit Intrusion Detection & Prevention System which joins the existing Gigabit and 10 Gigabit advanced security systems. All of the Dragon appliances now support Enterasys distributed intrusion prevention capabilities to automatically sense and respond to threats in real-time across multi-vendor wired and wireless networks.

Dragon is unique in its ability to extend IDS/IPS to every LAN edge access port to detect threats, mitigate or stop any attack and, most importantly, automatically contain and/or remove the source of the threat from the network.

The new Dragon multi-gigabit appliances intelligently integrate with the Dragon Security Command Console for security information and event management (SIEM). When deployed in conjunction with the Enterasys Network Access Control (NAC) solution, unique IP-to-ID mapping capabilities immediately identify, locate, isolate and remove the source of malicious network traffic in real-time.

The Enterasys Dragon IDS/IPS system also simultaneously performs VoIP traffic analysis, vulnerability signature matching, protocol analysis, and network behavioral analysis with total packet capture and complete session reconstruction to protect against the widest variety of network-based and host-based threats. Dragon’s multi-threaded architecture and virtual sensors optimize traffic analysis while scaling to meet the needs of the world’s largest networks.

Pricing for the Dragon Multi-Gigabit Intrusion Detection & Prevention System starts at $99,995 inclusive of 8x1GbE interfaces or 1x10GbE interfaces — or less than $20,000 per gigabit of throughput performance. The two rack unit (2RU) appliance offers 10 GbE and 1 GbE network connectivity options to provide users with the capability to customize the system to their specific network interface requirements.