Our SmartMIB solution could readily be used to assess and detect very common and unfortunately highly successful Security attacks.
|
Please Note: |
|
All the documentation for the solutions below is currently ‘Under Construction’.
MORE
SECURITY SOLUTIONS WILL BE ADDED OR DOCUMENTED LATER. |
Detecting the H.323 ‘messages processing’ induced DOS
(CCH323_CT Process Detection)
Detecting ICMP scan induced ‘unreachable packets’ DOS
The performance of network devices can be degraded when they have to send a large number of ICMP unreachable packets. This situation usually can occur due to heavy network scanning.
Detecting SNMP Authentication Failed attempts
The source addresses attempting to gain access to the SNMP agent on the device and failed due to AuthenticationFailure errors.
Detecting Interface Blocked IPv4 Packets vulnerability.
Monitoring the number of ‘Output Queue Drops’ count on an interface.
Detecting ARP DOS attacks
Monitoring the number of input ‘ARP Request Drops’ count on an interface.
Detecting TCP based DOS SCANS.
Monitoring TCP ‘bogus’ Session establishment on network elements.
Detecting DIRECTED DOS attacks by source address.
Suspected source addresses directing DOS attacks on a network resource.
Detecting TCP SYN based DOS attacks.
This solution tests if an unusually high number of TCP connections in SYN-RCVD states.
Detecting and evaluating the amount of Broadcast traffic activity across the network.
Detecting ‘Excessive Broadcasts’ as they could be the result of a specific DOS attack.
Detecting if your Network is Unwittingly Hosting an DOS Attack on others.
As DOS attacks rely on bogus source addresses, this solution detects if your network is generating or is the source for false Source IP addresses.
[Small Solutions], [Professional Solutions], [Security
Solutions], [Development Solutions]
[Home], [About],
[Solutions
Center], [NMS
Market],
[Products & Services],
[Management
Technology], [Technical Support],
[Contact us],
[Site Map]